Atomic Arch Campaign Compromises Over 20 Linux AUR Packages to Distribute Malware
Sonatype, a cybersecurity research firm, has identified a malicious campaign specifically targeting Linux systems through a novel exploitation method. The attackers are leveraging a vulnerability in the ownership transfer mechanism of open-source projects to deploy malware discreetly. This operation, known as “Atomic Arch,” primarily affects the Arch User Repository (AUR),…