Sygnia says Velvet Ant replaced Linux PAM and OpenSSH components in a long-running intrusion. Hosting admins should verify login-stack integrity before rotating credentials.
Arch AUR users should review recent AUR builds after the Atomic Arch campaign hijacked orphaned packages to deliver credential-stealing malware.
Update Chrome 148.0.7778.167/168 after Google fixed 79 security issues, including multiple critical CVEs affecting desktop and managed fleets.
Patch Exim CVE-2026-45185 by updating to Exim 4.99.3 or vendor-fixed packages, restarting mail service, verifying mail flow, and reviewing logs.
