all InfoSec news
XZ Backdoor: How to check if your systems are affected?
Malware Analysis, News and Indicators - Latest topics malware.news
A principal software engineer at Microsoft by the name of Andres Freund accidentally stomped upon a backdoor within XZ, the popular compression library. This discovery happened because he noticed both a 500ms delay for ssh as well as the sshd processes using a surprising amount of CPU, despite immediately failing because of wrong usernames etc. He researched this and on March 29th, 2024 posted his findings on oss-security, a popular mailing list, avoiding a worldwide disaster in the open-source …
article backdoor blog check link malware analysis medium systems topic xz backdoor