Techly NewsGet the app

Get the latest tech news

New XZ Backdoor Scanner Detects Implants In Any Linux Binary


Bill Toulas reports via BleepingComputer: Firmware security firm Binarly has released a free online scanner to detect Linux executables impacted by the XZ Utils supply chain attack, tracked as CVE-2024-3094. CVE-2024-3094 is a supply chain compromise in XZ Utils, a set of data compression tools and...

Bill Toulas reports via BleepingComputer: Firmware security firm Binarly has released a free online scanner to detect Linux executables impacted by the XZ Utils supply chain attack, tracked as CVE-2024-3094. Late last month, Microsoft engineer Andres Freud discovered the backdoor in the latest version of the XZ Utils package while investigating unusually slow SSH logins on Debian Sid, a rolling release of the Linux distribution. Binarly says the approach taken so far in the threat mitigation efforts relies on simple checks such as byte string matching, file hash blocklisting, and YARA rules, which could lead to false positives.

Get the Android app

Or read this on Slashdot

Read more on:

Photo of implants

implants

Photo of Linux binary

Linux binary

Related news:

News photo

New XZ backdoor scanner detects implant in any Linux binary

News photo

Liquid RAM Flexes for Wearables, Robots, Implants. A non-volatile version could be on its way, too.

News photo

New 'Mind-Reading' AI Translates Thoughts Directly From Brainwaves – Without Implants

« Latest Nothing OS 2.5.3 update to Phone 2 brings April 2024 security patch
X names its third head of safety in less than two years »