How-To Geek on MSN

Arch Linux's largest software repo is blocking sign-ups due to a malware crisis

AUR was considered a looming security threat.

Arch Linux locks down AUR signups amid wave of malicious commits

A wave of malicious commits hit the Arch User Repository (AUR) over the weekend, prompting the team to disable new account ...
The Hacker News

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit

Attackers hijacked 400+ Arch Linux AUR packages to run a Rust credential stealer, with optional eBPF rootkit support on root ...

Malicious apps got into the Arch User Repository - how to protect yourself

Malicious apps got into the Arch User Repository - how to protect yourself ...
GamingOnLinux

The Arch Linux AUR had over 400 packages compromised with malware

Looks like the Arch Linux AUR (Arch User Repository) needs some better security and package checks - as some malicious users ...
GamingOnLinuxOpinion

The security situation with the Arch Linux AUR got a lot worse

Oh dear, the situation with the Arch Linux AUR got a fair bit worse since GamingOnLinux initially covered the malicious ...
SecurityWeek

Atomic Arch Supply Chain Attack Hits 1,500 AUR Packages

At least 1,500 malicious packages were published to the Arch User Repository (AUR) as part of the Atomic Arch supply chain ...
latesthackingnews.com

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

An AUR supply chain attack compromised more than 400 Arch Linux packages from 11 June 2026, planting a Rust credential ...
The Next Web

Attackers hijacked over 1,500 Arch Linux packages to steal developers’ secrets, no hacking required

Attackers hijacked over 1,500 packages in Arch Linux's AUR to plant a credential stealer. The official repos are safe, but the trust model took the hit.