all InfoSec news
Yet another reason why the xz backdoor is a sneaky b@$tard
DEV Community dev.to
This post was originally posted on the ARMO Security Blog and was authored by Ben Hirschberg CTO & Co-founder of ARMO
Background
If you just woke up from hibernation and you didn’t know about the back door that was implanted in some OpenSSH releases, this section is the TL;DR.
A contributor to the liblzma library (a compression library that is used by the OpenSSH project, among many others) submitted malicious code that included an obfuscated backdoor. Since the maintainers had …
amp armo back back door backdoor ben blog co-founder cto cve cybersecurity door founder linux openssh releases security security blog sneaky xz xz backdoor