AURpocalypse now: a look at the recent AUR attacks

Security, Software Releases & Release Notes, DevOps & Infrastructure(lwn.net)view on HackerNews

AURArch LinuxLinuxmalwaresecurityPKGBUILD files

Author: jwilk

Date: 6/19/2026

Article Summary:

The Arch User Repository (AUR) has been subject to a sustained attack, where an attacker adopted orphaned packages and pushed malicious updates that installed malware on users' systems.