XZ Utils backdoor: Detection tools, scripts, rules

As the analysis of the backdoor in XZ Utils continues, several security companies have provided tools and advice on how to detect its presence on Linux systems. What happened? The open-source XZ Utils compression utility has been backdoored by a skilled threat actor who tried to get the malicious packages included in mainstream Linux distributions, to allow them unfettered, covert SSH access to Linux systems around the world. “The author intentionally obfuscated the backdoor in … More →

The post …

actor advice analysis backdoor binarly bitdefender companies compression detect detection don't miss elastic github hot stuff linux linux systems mainstream malicious malicious packages open source packages presence rules scripts security security companies supply chain compromise systems threat threat actor tools utility xz utils