Binarly, an AI-driven firmware and software supply chain security platform, has created a free analytics tool, XZ.fail detection tool, to help defenders spot the signs of the dangerous XZ backdoor (CVE-2024-3094). The tool includes generic IFUNC implementation detection with a near-zero false positive rate.
The Binarly Transparency Platform offers a more comprehensive detection and remediation strategy. The XZ backdoor was revealed on March 29, 2024, when a thread was posted to Openwall’s oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
Read more – Binarly publie un outil de détection gratuit pour la porte dérobée XZ
Check Out The New TalkDev Podcast. For more such updates follow us on Google News TalkDev News.