Back to pulanski's feed

Over 400 Arch Linux AUR Packages Hijacked to Deploy Infostealer and eBPF Rootkit (opens in new tab)馃殌Performance Engineering

thehackernews.comCited by 1 articleCovers: AUR Packages Attacked by Infostealer, Attackers Hijack Trusted AUR Packages to Deliver Rootkit Malware +1 moreOpen original (opens in new tab)

Attackers took over more than 400 packages in the Arch User Repository (AUR) this week and rewrote their build scripts to install a credential stealer on any machine that built them. The malware is a Rust binary built to harvest developer secrets. When it lands with root, it can also load an eBPF rootkit to hide itself. The AUR is Arch Linux's community package collection, and it is separate

Read the original article
Sign in to keep reading the full article.
Sign UpLog In

Cited by 1 article

Atomic Arch: 400+ AUR Packages Backdoored with eBPF Rootkit and Credential Stealer

latesthackingnews.com

Keyboard Shortcuts

Navigation

Next / previous item
j/k
Open post
oorEnter
Preview post
v

Post Actions

Love post
a
Like post
l
Dislike post
d
Undo reaction
u
Save / unsave
s

Recommendations

Add interest / feed
Enter
Not interested
x

Go to

Home
gh
Interests
gi
Feeds
gf
Likes
gl
History
gy
Changelog
gc
Settings
gs
Browse
gb
Search
/

General

Show this help
?
Submit feedback
!
Close modal / unfocus
Esc

Press ? anytime to show this help