96
Arch Linux Users at Risk Again as AUR Hit by Another RAT
(news.itsfoss.com)
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
this post was submitted on 01 Aug 2025
96 points (97.1% liked)
Linux
56904 readers
745 users here now
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Rules
- Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
- No misinformation
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0
founded 6 years ago
MODERATORS
isnt that well known though? AUR packages are built by third parties (eg users) and there were always warnings against just this, no?
It is a well known risk but not something that was a real risk numerically. I mean, it still isn’t given the number of packages in the AUR.
This is a couple of malicious packages discovered in a short period though. Not a good sign. It was really impact the AUR if polluting it with malware became common.
You should always inspect AUR packages before installing them but few people do. Many would not even know what they were looking at.
yeah, that's almost as bad as those apps requiring you to pipe a remote script through sudo shell
God I hate those. The worst way to distribute apps.
especially when flatpaks exist now!