Frieda’s bossI know that the thing with the AUR in the #Arch is tough, but next to impossible to not laugh if you are not one of the "Arch BTW" guys. 
ㄒ丨乇爪卩ㄖ 
🐦🔥nemo™🐦⬛ 🇺🇦🍉
Forum FAQ explains how to check for compromised AUR packages after the Jun 9–12 supply‑chain attack — use paru -Qm or the provided scripts to detect 1,500+ backdoored packages; run the full scan and rotate credentials if infected. Read: https://discuss.cachyos.org/t/how-to-check-for-compromised-packages-from-the-current-aur-malware-attack/31077 🔒⚠️💻 #AUR #CachyOS #infosec #Arch #ArchBtw #MalwareCheck
tl;dr:
git clone https://github.com/lenucksi/aur-malware-check.git && cd aur-malware-check && sudo ./aur_check-v2.sh --full This performs install-date checks and rootkit/persistence heuristics.
How to check for compromised packages from the current aur malware attack
Most CachyOS users are not affected — this hit the AUR, not the Cachy/Arch repos. Only matters if you install AUR packages. See yours with paru -Qm. Between Jun 9–12 attackers backdoored 1500+ AUR packages (infostealer + rootkit). for fish (cachyos default) set malware (begin; curl -fsS --proto '=https' https://raw.githubusercontent.com/lenucksi/aur-malware-check/master/package_list.txt; curl -fsS --proto '=https' https://md.archlinux.org/s/SxbqukK6IA/download; curl -fsS --proto '=https' https...
git clone https://github.com/lenucksi/aur-malware-check.git && cd aur-malware-check && sudo ./aur_check-v2.sh --full This performs install-date checks and rootkit/persistence heuristics.
@enriquericos xD hahah #ArchBtw
@all: For clarification, I personally don't use Arch (for everyone reading this now).
@enriquericos I don't know 🤷 I dont use #ArchBtw xD
Angriffswelle im Arch AUR: Angreifer übernahmen Hunderte verwaiste PKGBUILD‑Beschreibungen, fügten npm/Bun‑Abhängigkeiten und Malware (u.a. atomic-lockfile → deps) hinzu. Arch‑Maintainer löschen Einträge und sperren Accounts — AUR‑Nutzung bleibt auf eigenes Risiko. https://www.heise.de/news/Angriffswelle-auf-Arch-Linux-Hunderte-Paketbeschreibungen-mit-Malware-im-AUR-11330029.html #ArchLinux #AUR #InfoSec 🔒🛡️
#ArchBtw
#ArchBtw
Attack wave hits Arch Linux AUR: attackers hijacked hundreds of orphaned PKGBUILDs to add an npm dependency that pulled in "atomic-lockfile"—which delivered a credential‑stealing payload. Arch maintainers are deleting malicious updates and blocking accounts. Read: https://www.heise.de/en/news/Attack-wave-on-Arch-Linux-hundreds-of-package-descriptions-with-malware-in-AUR-11330290.html ⚠️🔒 #ArchLinux #AUR #infosec #ArchBtw
ʇuʇ‾ǝddǝsnıƃ 
Chi si sta cagando addosso alzi la mano!
https://kerberos.archathome.eu/pacchetti-aur/
@linux @[email protected]
#linux #arch #archBTW #aur #security
AUR, pacchetti compromessi e altre splendide occasioni per cagarsi in mano
Alcuni pacchetti AUR sono stati compromessi e la community è passata rapidamente dalla fase "tranquilli ragazzi" alla fase "forse è il caso di controllare quei PKGBUILD". Ecco cosa è successo e perché leggere ciò che si installa è ancora una buona idea.