all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

XZ backdoor - upstream supply chain attack

Add to bookmarks
April 2, 2024, 3:29 p.m. | /u/MartinZugec

cybersecurity www.reddit.com

I wrote a [technical advisory](https://www.bitdefender.com/blog/businessinsights/technical-advisory-xz-upstream-supply-chain-attack/) on the recently discovered backdoor, which is scoring a perfect 10 on the severity scale and was extensively covered in media.

However, thanks to a fortunate set of circumstances, the impact is much less widespread than initially feared. Our analysis of real-world data (telemetry) confirms this hypothesis – major Linux distributions like RHEL, SUSE, and Debian are not affected by this vulnerability, and those operating systems that are vulnerable are very rare.

The operation was …

analysis attack cybersecurity data debian distributions impact linux linux distributions major operating systems real rhel suse systems telemetry thanks vulnerability vulnerable world

Visit resource

More from www.reddit.com / cybersecurity

Jobs being outsourced 3 hours ago | www.reddit.com
analyst cybersecurity doing hello +12
How to Detect a GIFshell Attack: Step-by-Step Guide 8 hours ago | www.reddit.com
attack cybersecurity detect gifshell +1
5 Methods Useful To Discover APIs 10 hours ago | www.reddit.com
apis cybersecurity discover
Germany acuses Russia of cyberattack on governing party – DW 11 hours ago | www.reddit.com
cyberattack cybersecurity germany party +1
Meeting with new exec 12 hours ago | www.reddit.com
apprenticeship careers cybersecurity executive +9
Security Engineer 15 hours ago | www.reddit.com
account analyst cybersecurity detect +18
Active Directory Security A Concern? 16 hours ago | www.reddit.com
active directory active directory security cloud cybersecurity +8
NSA security designer goes to jail for sharing top secret files 18 hours ago | www.reddit.com
cybersecurity designer files goes +7
Thousands of Airsoft players under threat after data breach 18 hours ago | www.reddit.com
breach cybersecurity data data breach +3

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Intern, Cyber Security Vulnerability Management

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Compliance - Global Privacy Office - Associate - Bengaluru

@ Goldman Sachs | Bengaluru, Karnataka, India
View on infosec-jobs.com

Cyber Security Engineer (m/w/d) Operational Technology

@ MAN Energy Solutions | Oberhausen, DE, 46145
View on infosec-jobs.com

Armed Security Officer - Hospital

@ Allied Universal | Sun Valley, CA, United States
View on infosec-jobs.com

Governance, Risk and Compliance Officer (Africa)

@ dLocal | Lagos (Remote)
View on infosec-jobs.com

Junior Cloud DevSecOps Network Engineer

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com
View more jobs