Sponsor of the Day:
Jerkmate
https://www.stepsecurity.io/blog/analysis-of-backdoored-xz-utils-build-process-with-harden-runner
Analysis of Backdoored XZ Utils Build Process with Harden-Runner - StepSecurity
Explore an in-depth analysis of the backdoored XZ Utils build process using StepSecurity Harden-Runner. Learn how real-time monitoring detected malicious...
xz utilsbuild processanalysisbackdooredharden
https://www.schneier.com/blog/archives/2024/04/xz-utils-backdoor.html
XZ Utils Backdoor - Schneier on Security
Apr 10, 2024 - The cybersecurity world got really lucky last week. An intentionally placed backdoor in XZ Utils, an open-source compression utility, was pretty much...
xz utils backdoorschneiersecurity
https://guardsix.com/blog/emerging-threats/xz-utils-backdoor
XZ Utils Backdoor: Supply Chain Vulnerability (CVE-2024-3094) - guardsix
xz utils backdoorcve 2024 3094supply chainvulnerabilityguardsix
https://tukaani.org/xz-backdoor/
XZ Utils backdoor
xz utils backdoor
https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/
What we know about the xz Utils backdoor that almost infected the world - Ars Technica
Apr 1, 2024 - Malicious updates made to a ubiquitous tool were a few weeks away from going mainstream.
xz utils backdoorworld ars technicaknowalmostinfected