jDownloader's homepage got compromised

and served a malicious installer. See e.g. https://www.reddit.com/r/jdownloader/comments/1t6goqe/is_the_website_hacked/okhg2ur/

From what I can read flatpak and the updater was fine, but they mention Linux for the shell installer script. Personally I use flatpak, so I didn’t dig any deeper for whatever the AUR package actually does.

Don’t want to spread panic, but it is a popular AUR package, so just as a heads-up if you installed it in the recent days.

wait.. it is been flagged as unsafe for a very long time right? there are tons of article about this on the internet

If someone thinks the product is unsafe to use by design, well everybody can come up with their own conclusion - fair game. This is about an intrusion by an unknown 3rd party.