Techly NewsGet the app

Get the latest tech news

Here’s How Millions of Linux Computers Almost Got Hacked


A hacker spent years ingratiating themself to a developer — then, perhaps with the help of others, injected a backdoor into their Linux code.

The XZ backdoor was introduced by way of what is known as a software supply chain attack, which the National Counterintelligence and Security Center defines as “deliberate acts directed against the supply chains of software products themselves.” The attacks often employ complex ways of changing the source code of the programs, such as gaining unauthorized access to a developer’s system or through a malicious insider with legitimate access. Tan’s elevation to being a co-maintainer mostly played out on an email group where code developers — in the open-source, collaborative spirit of the Linux family of operating systems — exchange ideas and strategize to build applications. A from the defense contractor HBGary Federal outlines the meticulousness that may go into maintaining these fictive personas, including creating an elaborate online footprint — something which was decidedly missing from the accounts involved in the XZ timeline.

Get the Android app

Or read this on r/technology

Read more on:

Photo of Millions

Millions

Photo of linux computers

linux computers

Related news:

News photo

Google is deleting millions of users' search data from Incognito mode. Here's why it matters

News photo

TechCrunch Minute: AT&T data breach prompts millions of passcodes to be reset

News photo

Google to delete search data of millions who used 'incognito' mode

« Stability AI Reportedly Ran Out of Cash To Pay Its Bills For Rented Cloud GPUs
Taiwan’s Chips Giant Resumes Operations After Deadly Quake »