Techly NewsGet the app

Get the latest tech news

How one volunteer stopped a backdoor from exposing Linux systems worldwide


An off-the-clock Microsoft developer got suspicious while doing some micro-benchmarking.

This immediately made him suspicious, and he remembered an “odd complaint” from a Postgres user a couple of weeks earlier about Valgrind, Linux’s program that checks for memory errors. However, as noted in reports by Evan Boehs and others, “Kumar” and “Ens” were never seen outside the XZ community, leading investigators to believe both are fakes that existed only to help Jia Tan get into position to deliver the backdoored code. Trillion dollar corporations expect free and urgent support from volunteers.” And they brought receipts, pointing out how they dealt with a “high priority” bug affecting Microsoft Teams.

Get the Android app

Or read this on The Verge

Read more on:

Photo of Linux

Linux

Photo of Volunteer

Volunteer

Photo of backdoor

backdoor

Related news:

News photo

New XZ backdoor scanner detects implant in any Linux binary

News photo

DinodasRAT malware targets Linux servers in espionage campaign

News photo

Backdoor found in widely used Linux utility breaks encrypted SSH connections

« Intel’s chipmaking business lost a boatload of billions last year
Apple Quietly Unveils New AI Model ReALM That Outperforms OpenAI's GPT-4 Despite Being Much Lighter And Faster »