Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
AB InBev Turns Bars into Stadiums During Biggest-Ever FIFA World Cup™8.6.2026 15:00:00 EEST | Press release
Today, AB InBev, the world’s leading brewer, launched its global “Cheers to Bars” platform – a celebration of local bars and their impact on communities all over the world. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260608956519/en/ Bars have always been more than places to grab a beer. They are where people come together to connect, celebrate milestones, build friendships, and create lasting memories. As hubs of social connection, bars play an important role in strengthening communities and bringing people closer together. “During the FIFA World Cup 2026™, bars will become the beating heart of every neighborhood – places where strangers become friends, every goal is celebrated as one, and collective memories are created with every raised glass,” said Michel Doukeris, CEO, AB InBev. “Beer and football have long been catalysts for bringing people together to create moments of joy and belonging. Nowhere is this spirit of b
Seequent and Cascade Institute Partner to Map Canada’s Deep Geothermal Resources8.6.2026 15:00:00 EEST | Press release
Seequent, The Bentley Subsurface Company, and the Cascade Institute today announced a collaboration to develop a Canadian Thermal Model. This landmark national initiative will reveal Canada’s deep geothermal resources and accelerate the development of renewable energy. The announcement comes on the opening day of the world’s biggest geothermal event, the World Geothermal Congress, being held in Calgary from 8 to 11 June. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260608741816/en/ The Canadian Thermal Model will integrate over 20 input layers of geoscientific data related to geothermal energy to evaluate Canada’s nationwide deep heat resources. As investment in geothermal energy surges globally as a reliable, always-on clean power source, the Canadian Thermal Model will create a comprehensive national view of deep heat resources using novel machine learning methods to address a long-standing challenge for the sector: limi
NTT DATA Expands Collaboration with Google Cloud to Accelerate Enterprise AI from Pilots to Production8.6.2026 15:00:00 EEST | Press release
NTT DATA, a global leader in AI, digital business and technology services today announced an expanded collaboration with Google Cloud to help enterprises move from AI experimentation to scaled deployment of agentic AI solutions built with Gemini Enterprise. The collaboration is focused on enabling AI-powered reinvention, helping enterprises redesign processes, operating models and customer experiences using agentic AI. The collaboration combines Google Cloud’s AI, data and cloud platform capabilities with NTT DATA’s global delivery scale and deep industry expertise across strategy, implementation, adoption, managed services and value realization. Together, the companies will help clients embed AI into core workflows, improve productivity, accelerate time-to-value and support governance, security, compliance and responsible use of AI. NTT DATA is establishing a dedicated global Gemini Enterprise practice, backed by joint business planning, technical enablement, training, certifications,
Aptiv Introduces Advanced Occupancy Classification, The Industry’s First Camera-Only Occupant Detection System8.6.2026 15:00:00 EEST | Press release
Aptiv PLC (NYSE: APTV), a global industrial technology company, today announced the launch of its Advanced Occupancy Classification (AOC) system, the industry’s first occupant detection solution powered entirely by an in-cabin camera. The system simplifies vehicle architecture by eliminating traditional in-seat hardware while enabling next-generation cabin intelligence. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260608385007/en/ Aptiv’s Advanced Occupancy Classification (AOC) replaces traditional in-seat hardware with a vision-based software solution—reducing both system complexity and cost. Built on more than two decades of Aptiv leadership in occupant detection, AOC is an advanced software solution that leverages artificial intelligence (AI) and computer vision to accurately classify occupants based on parameters such as height, weight, and body position. This enables optimized airbag deployment decisions while signifi
Xylem Expands Long-Term Water Partnership with Dow8.6.2026 15:00:00 EEST | Press release
Xylem (NYSE: XYL), a leading global water technology company, today announced a landmark agreement with Dow (NYSE: DOW) to design, build and operate advanced water systems at its large-scale industrial complex in Fort Saskatchewan, Alberta, Canada. The agreement expands Xylem’s long-standing collaboration with Dow, supporting the increased operations tied to Dow’s Path2Zero project. Under the agreement, Xylem will deliver a full end-to-end solution that includes engineering, system design, and long-term operation. The project is designed to support reliable, high-quality water supply, treatment, and reuse across the site. The system is expected to be operational by August 2028. “This agreement represents a major milestone for Xylem,” said Rodney Aulick, EVP and President, Water Solutions and Services at Xylem. “It reflects the strength of our long-standing relationship with Dow and the deep trust we’ve built with a key customer over time. Strong customer relationships are central to ho
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom