Show threadWordmarkJun 11
@apz #holyfuck secure your #updateservers https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency #archlinux
Atomic Arch npm Campaign Adds Malicious Dependency

Sonatype researchers uncovered Atomic Arch, a supply chain attack targeting orphaned AUR packages. Learn how attackers are hijacking trusted projects.