all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

A software supply chain meltdown: What we know about the XZ Trojan

Add to bookmarks
April 1, 2024, 8:12 p.m. | Paul Roberts

Security Boulevard securityboulevard.com




Security experts are sounding alarms about what some are calling the most sophisticated supply chain attack ever carried out on an open source project: a malicious backdoor planted in xz/liblzma (part of the xz-utils package), a popular open source compression tool.


The post A software supply chain meltdown: What we know about the XZ Trojan appeared first on Security Boulevard.

alarms appsec & supply chain security attack backdoor calling compression experts malicious meltdown open source package popular project security security experts software software supply chain supply supply chain supply chain attack tool trojan

Visit resource

More from securityboulevard.com / Security Boulevard

Zero-Day Nightmare: Palo Alto, Cisco, and MITRE Under Attack 2 hours ago | securityboulevard.com
adaptive security alto asa attack +29
Venafi Launches 90-Day TLS Certificate Renewal Initiative 2 hours ago | securityboulevard.com
application security appsec certificate certificate management +26
Data Breaches in April 2024 – Infographic 6 hours ago | securityboulevard.com
april big breaches cyber attacks +10
Intel 471 Acquires Cyborg Security to Expand Its Cyber Threat Intelligence Portfolio with Innovative Threat … 7 hours ago | securityboulevard.com
actor advanced april blog +26
RSAC 2024 Innovation Sandbox | VulnCheck: A Solution to the Challenge of Vulnerability Prioritization 15 hours ago | securityboulevard.com
benchmark blog challenge conference +22
Navigating the Future: Insights From the M&A Symposium at Kaseya Connect Global 16 hours ago | securityboulevard.com
amp connect connect global future +15
Introducing ISO 42001 and NIST RMF Frameworks 17 hours ago | securityboulevard.com
build business can companies +17
PIPEDA Compliance with Accutive Data Discovery and Masking: Understanding and protecting your Canadian sensitive data 20 hours ago | securityboulevard.com
act adm platform articles canada +34
TrustCloud Product Updates: April 2024 20 hours ago | securityboulevard.com
ai capabilities april capabilities generative +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

EY- GDS- Cybersecurity- Staff

@ EY | Miguel Hidalgo, MX, 11520
View on infosec-jobs.com

Staff Security Operations Engineer

@ Workiva | Ames
View on infosec-jobs.com

Public Relations Senior Account Executive (B2B Tech/Cybersecurity/Enterprise)

@ Highwire Public Relations | Los Angeles, CA
View on infosec-jobs.com

Airbus Canada - Responsable Cyber sécurité produit / Product Cyber Security Responsible

@ Airbus | Mirabel
View on infosec-jobs.com

Investigations (OSINT) Manager

@ Logically | India
View on infosec-jobs.com

Security Engineer I, Offensive Security Penetration Testing

@ Amazon.com | US, NY, Virtual Location - New York
View on infosec-jobs.com
View more jobs