all InfoSec news
Malicious xz backdoor reveals fragility of open source
April 1, 2024, 9:16 p.m. | Thomas Claburn
The Register - Security www.theregister.com
This time, we got lucky. It mostly affected bleeding-edge distros. But that's not a defense strategy
Analysis The discovery last week of a backdoor in a widely used open source compression library called xz could have been a security disaster had it not been caught by luck and atypical curiosity about latency from a Microsoft engineer.…
analysis backdoor called caught compression curiosity defense disaster discovery edge latency library malicious open source security strategy week
More from www.theregister.com / The Register - Security
Jobs in InfoSec / Cybersecurity
Social Engineer For Reverse Engineering Exploit Study
@ Independent study | Remote
Application Security Engineer - Remote Friendly
@ Unit21 | San Francisco,CA; New York City; Remote USA;
Cloud Security Specialist
@ AppsFlyer | Herzliya
Malware Analysis Engineer - Canberra, Australia
@ Apple | Canberra, Australian Capital Territory, Australia
Product CISO
@ Fortinet | Sunnyvale, CA, United States
Manager, Security Engineering
@ Thrive | United States - Remote