ScamLens
Technical bleeping computer · 12/6/2026

Over 400 Arch Linux packages compromised to push rootkit, infostealer

Esta es una página de detalle de inteligencia independiente, diseñada para indexación y citas, con el resumen, los dominios vinculados y las próximas vías de verificación en un solo lugar.

Respuesta rápida

Over 400 packages in the Arch User Repository have been compromised to distribute a Linux rootkit and infostealer malware. The malware targets user credentials and access tokens, representing a significant supply chain attack affecting the Linux development community.

No se listan dominios vinculados públicos
No se listan etiquetas públicas de estafa
Grado de inteligencia actionable

bleeping computer

Fuente

HIGH

Importancia

0

Dominios Vinculados

0

Direcciones Vinculadas

Resumen de IA

Over 400 packages in the Arch User Repository have been compromised to distribute a Linux rootkit and infostealer malware. The malware targets user credentials and access tokens, representing a significant supply chain attack affecting the Linux development community.

Convierta esta Inteligencia en Acción

Si su caso se parece a esta historia, continúe verificando el sitio web, email, chat o ruta de denuncia formal con una guía paso a paso.

Verificación Web

Verifique los dominios vinculados

Si la noticia involucra sitios web, páginas de destino o suplantación, pase al verificador de sitios.

Correo / Chat

Analice el email o chat a continuación

Muchas noticias de inteligencia eventualmente aparecen como soporte falso, avisos falsos o embudos de chat.

Denuncia Formal

Revise las guías de denuncia y para víctimas

Si su caso refleja este patrón de cerca, pase directamente a la denuncia y planificación de acción.

Detalles de Inteligencia Relacionados

Continúe con incidentes similares para determinar si es un caso aislado o parte de un patrón de fraude más amplio.

Technical

ShinyHunters Uses Oracle Zero-Day to Rampage Higher Ed

ShinyHunters hacker group exploited a critical zero-day vulnerability in Oracle ERP software to target American universities, resulting in large-scale data theft. The vulnerability disproportionately affected higher education institutions storing sensitive student and employee data.

Technical

Over 73,000 French govt employees affected in Tchap messenger breach

The French government disclosed a security breach of Tchap, its encrypted messaging platform used by public sector employees. Over 73,000 French government employee accounts were compromised in the incident. The breach poses potential risks to government communications security.

Technical

Oracle mitigates PeopleSoft zero-day exploited in data theft attacks

Oracle issued a critical security warning for PeopleSoft Suite zero-day vulnerability CVE-2026-35273 allowing unauthenticated remote code execution. The flaw is actively exploited by ShinyHunter threat actors in data theft attacks. Oracle has released mitigation guidance.