The Arch Linux Project has been subjected to a sustained DDoS (Distributed Denial of Service) attack over the past two weeks, severely disrupting its core services. The attack primarily targeted the main webpage, Arch User Repository (AUR), and forums, leading to partial and intermittent outages. The AUR, a critical repository for user-submitted package descriptions that complement the official software distribution, has been heavily impacted, hindering users from installing software, updating systems, or downloading installation ISOs. While the Arch Linux team is collaborating with its hosting provider to mitigate the attack and implement DDoS protection, the service disruptions persist, forcing users to rely on workarounds documented on a dedicated outage page.The incident has not only degraded user experience for Arch Linux’s global community—including advanced users and derivatives like SteamOS (Valve’s Steam Deck), EndeavourOS, and Manjaro Linux—but also strained the volunteer-driven DevOps team, who are working under pressure to restore stability. The attack’s origin and motives remain undisclosed during the ongoing investigation, but the prolonged downtime risks eroding trust in the distribution’s reliability, particularly among intermediate and advanced Linux users who depend on Arch for its minimalist, customizable approach. The financial and reputational costs, while not explicitly quantified, are compounded by the loss of accessibility to critical development and user resources, potentially discouraging contributions to the open-source project.