Over 400 Arch Linux packages compromised to push rootkit, infostealer

Over 400 packages in the Arch User Repository are distributing a Linux rootkit and infostealer malware. A new maintainer is spoofing a trusted publisher to push infected packages. The malware, named atomic-lockfile, targets credentials and access tokens from developer tools and services.