More malware uploaded to Arch Linux AUR (Linuxiac)

by
jzb
from LWN.net on (#6Z1R2)

Linuxiac reportsthat another malicious package has been uploaded to the Arch UserRepository (AUR). This time around the package wasgoogle-chrome-stable, which installed a remote-access trojan along with Google Chrome.

The good news-if you can call it that-is that the google-chrome-stablepackage was available on the AUR only for a few hours before themalware hidden inside was discovered. Still, it did get a few upvotes,which suggests at least some users ended up installing it.

The Arch Linux project had to warn users about a similar attackless than a monthago when a user uploaded three browser packages that alsoinstalled a malicious script identified as a remote-access trojan.

External Content
Source RSS or Atom Feed
Feed Location http://lwn.net/headlines/rss
Feed Title LWN.net
Feed Link https://lwn.net/
Reply 0 comments