this post was submitted on 23 Aug 2025
91 points (96.0% liked)

Linux

9322 readers
319 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago
MODERATORS
Ategon@programming.dev
anzo@programming.dev
dwraf_of_ignorance@programming.dev
91
Linux Malware Delivered via Malicious RAR Filenames Evades Antivirus Detection (thehackernews.com)
submitted 2 weeks ago by Sunshine@piefed.ca to c/linux@programming.dev
14 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] whyNotSquirrel@sh.itjust.works 13 points 2 weeks ago (7 children)

also: antivirus detection, you guys have antivirus? I just install things from the official repository

[–] einkorn@feddit.org 3 points 2 weeks ago (5 children)

Well, recently there have been attacks on Arch based distros via poisened AUR packages.

[–] whyNotSquirrel@sh.itjust.works 4 points 2 weeks ago (3 children)

Isn't Arch repo a little bit faster to accept packages? From what I understood the point was to make it easier to maintain a package therefore you have the most up to date software version, not sure if this was the problem or anything else, but I have doubt that Debian repositories could be poisoned like this

[–] pontiffkitchen0@lemmy.world 8 points 2 weeks ago

Just in case you didn't circle back, the other commenter is correct. Just like Debian repositories, Arch repositories also haven't been poisoned like this . AUR has recently, but that's equivalent of like on Debian adding 3rd party repos, but AUR is just a meta collection of those unofficial user repos basically. Arch documentation even warns against blindly installing from AUR, and to read the pkg build first since it's basically the same thing as copy and pasting a curl command from a GitHub repo's readme.

load more comments (2 replies)
load more comments (3 replies)
load more comments (4 replies)