Should I Be Concerned About Malware on My Used Laptop?

If the laptop had malware designed for Windows and you wiped it to install Arch, you’re likely good to go! Just make sure to always stay cautious about the software you install in the future.

Generally speaking, you might be right to be cautious, but there's no foolproof way to guarantee your system is completely clean. New devices can have similar risks. It could be risky to assume used laptops are more jeopardized than new ones—both have their potential pitfalls.

Are you genuinely being targeted by someone, or is this just a general fear of malware? If you’re not under direct threat from skilled actors, you probably shouldn’t worry too much about it. Most users aren’t focusing on such deep threats unless there's a personal reason.

Honestly, this is likely more of a theoretical worry than a practical one. BIOS malware is rare and usually requires risky browsing habits to catch. The likelihood of actually being infected is slim, so I wouldn’t let it keep you up at night. If you’re concerned about firmware, replacing the SSD might be a more tangible solution.

You probably don’t need to stress too much about it now. Since you wiped the laptop and reinstalled the OS, it’s likely clean. Here are a few tips for peace of mind:

- Low-level malware, like UEFI firmware infections, is super rare. Just reinstalling should be enough.
- Malware targeting bootloaders (like grub) has surfaced recently but isn’t common. Enabling secure boot can help defensively here.
- For rootkits, avoid running unknown software with root privileges. If you want extra assurance, regularly scanning with tools like rkhunter or ClamAV could be a good idea, though that’s quite paranoid. Generally, installing from trusted sources should keep you safe.

Also, keep in mind that secure boot offers additional protection against some rootkits if set up correctly.

It's understandable to worry about breaches in manufacturer's firmware. However, most low-level issues are just bugs or oversight. To cover your bases, using a firewall to monitor outgoing traffic could be helpful. Whitelisting connections may offer you additional safety, making it harder for possible malware to communicate.