all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros

Add to bookmarks
March 30, 2024, 5:23 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

RedHat on Friday released an "urgent security alert" warning that two versions of a popular data compression library called XZ Utils (previously LZMA Utils) have been backdoored with malicious code designed to allow unauthorized remote access.
The software supply chain compromise, tracked as CVE-2024-3094, has a CVSS score of 10.0, indicating maximum severity. It impacts XZ Utils

access alert backdoor called code compression compromise cve cve-2024 cvss cvss score data data compression found library linux linux distros major malicious popular redhat remote access score secret security security alert software software supply chain supply supply chain supply chain compromise unauthorized urgent warning

Visit resource

More from thehackernews.com / The Hacker News

Ukrainian REvil Hacker Sentenced to 13 Years and Ordered to Pay $16 Million an hour ago | thehackernews.com
attacks hacker national pay +10
When is One Vulnerability Scanner Not Enough? 3 hours ago | thehackernews.com
antivirus antivirus software benefits concept +18
Dropbox Discloses Breach of Digital Signature Service Affecting All Users 3 hours ago | thehackernews.com
account breach breached cloud +23
New "Goldoon" Botnet Targets D-Link Routers With Decade-Old Flaw 3 hours ago | thehackernews.com
attackers attacks botnet called +18
CISA Warns of Active Exploitation of Severe GitLab Password Reset Vulnerability 7 hours ago | thehackernews.com
account account takeover agency catalog +28
New Cuttlefish Malware Hijacks Router Connections, Sniffs for Cloud Credentials 9 hours ago | thehackernews.com
authentication called cloud connections +24
Bitcoin Forensic Analysis Uncovers Money Laundering Clusters and Criminal Proceeds 23 hours ago | thehackernews.com
analysis bitcoin blockchain clusters +19
Android Malware Wpeeper Uses Compromised WordPress Sites to Hide C2 Servers 1 day ago | thehackernews.com
android android devices android malware binary +21
Everyone's an Expert: How to Empower Your Employees for Cybersecurity Success 1 day, 3 hours ago | thehackernews.com
course cybersecurity decision employees +8

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Social Engineer For Reverse Engineering Exploit Study

@ Independent study | Remote
View on infosec-jobs.com

Associate Manager, BPT Infrastructure & Ops (Security Engineer)

@ SC Johnson | PHL - Makati
View on infosec-jobs.com

Cybersecurity Analyst - Project Bound

@ NextEra Energy | Jupiter, FL, US, 33478
View on infosec-jobs.com

Lead Cyber Security Operations Center (SOC) Analyst

@ State Street | Quincy, Massachusetts
View on infosec-jobs.com

Junior Information Security Coordinator (Internship)

@ Garrison Technology | London, Waterloo, England, United Kingdom
View on infosec-jobs.com

Sr. Security Engineer

@ ScienceLogic | Reston, VA
View on infosec-jobs.com
View more jobs