all InfoSec news
A software supply chain meltdown: What we know about the XZ Trojan
April 1, 2024, 8:12 p.m. | paul.roberts@reversinglabs.com (Paul Roberts)
ReversingLabs Blog blog.reversinglabs.com
Security experts are sounding alarms about what some are calling the most sophisticated supply chain attack ever carried out on an open source project: a malicious backdoor planted in xz/liblzma (part of the xz-utils package), a popular open source compression tool.
alarms appsec & supply chain security attack backdoor calling compression experts malicious meltdown open source package popular project security security experts software software supply chain supply supply chain supply chain attack tool trojan
More from blog.reversinglabs.com / ReversingLabs Blog
ReversingLabs Search Extension for Splunk Enterprise
4 days, 9 hours ago |
blog.reversinglabs.com
Why GenAI fails at full SOC automation
1 week, 4 days ago |
blog.reversinglabs.com
Jobs in InfoSec / Cybersecurity
Information Security Engineers
@ D. E. Shaw Research | New York City
Technology Security Analyst
@ Halton Region | Oakville, Ontario, Canada
Senior Cyber Security Analyst
@ Valley Water | San Jose, CA
COMM Penetration Tester (PenTest-2), Chantilly, VA OS&CI Job #368
@ Allen Integrated Solutions | Chantilly, Virginia, United States
Consultant Sécurité SI H/F Gouvernance - Risques - Conformité
@ Hifield | Sèvres, France
Infrastructure Consultant
@ Telefonica Tech | Belfast, United Kingdom