Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Signaloid Announces Preview of New ASIC Targeted at Physical AI and Robotics Applications2.6.2026 07:00:00 EEST | Press release
Signaloid (https://signaloid.com), a computing platform company providing hardware and binary-translation-based acceleration of AI, robotics, aerospace, and quantitative finance workloads, today announced the tapeout and preliminary specifications documents for its C0-ASIC. Delivery of engineering samples to the first customer is due in Q3 2026 and additional FPGA-based systems implementing the ASIC’s design are under discussion for deployment in the UK and Switzerland later in 2026. The C0-ASIC was targeted specifically at energy-efficient physical AI workloads. The UK Advanced Research and Invention Agency (ARIA) will take delivery of systems based on the ASIC for use in next-generation AI workloads such as second order methods. “The Scaling Compute program at ARIA commissioned several innovative technology prototypes pursuing unconventional ideas to design new AI accelerators,” says ARIA Program Director Suraj Bramhavar. “We commissioned Signaloid’s C0-ASIC for evaluation in randomi
Blackstone Raises its Largest Asia Private Equity Fund at $13.1 Billion2.6.2026 04:00:00 EEST | Press release
Blackstone (NYSE: BX) today announced the final close of Blackstone Capital Partners Asia III (“BCP Asia III”) at $13.1 billion, exceeding its $10 billion target and marking the firm’s largest private equity fundraise in the region. The oversubscribed fund reached its hard cap and builds on the strong performance of the strategy’s first two vintages, with this close representing more than double the amount of capital raised for its predecessor vehicle. Joe Baratta, Global Head of Blackstone Private Equity Strategies,said: “We are grateful for the continued trust of our investors in Blackstone and our leading Asia Private Equity franchise. This successful fundraise reflects the strength of our platform and our ability to perform through cycles. Asia Pacific is the fastest-growing region in the world, presenting compelling opportunities to invest at scale behind our high-conviction themes and deliver for our investors.” Amit Dixit, Head of Asia for Blackstone Private Equity, said: “For t
Phison Collaborates with Intel to Bring Larger Local AI Workloads to Intel AI PC Platforms2.6.2026 03:00:00 EEST | Press release
COMPUTEX — Phison Electronics (8299TT), a global leader in NAND flash controllers and storage solutions, today announced a collaboration with Intel to enable AI PCs to deploy larger, more capable AI applications locally. The collaboration combines Intel® Core™ Ultra Series 3 processors with Phison’s Pascari aiDAPTIV, a memory extension solution that unblocks memory-constrained systems to support larger Mixture-of-Experts (MoE) AI models, longer-running AI sessions and agentic AI workflows. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260601878925/en/ Phison and Intel collaborate to bring larger local AI workloads to Intel AI PC Platforms Today, AI PCs are moving beyond simple assistant applications toward more advanced local AI use cases. These solutions now support end users and businesses in document analysis, multi-step workflow execution and private data protection while reducing reliance on cloud-only AI services. As
Phison Unlocks Full-Scale AI Deployment Across Industries2.6.2026 03:00:00 EEST | Press release
Phison Electronics (8299TT), a global leader in NAND flash controllers and storage solutions, today announced a new strategic initiative at COMPUTEX 2026 under the theme “AI Enabler: Evolving Data Storage Intelligence.” Expanding beyond its role as a storage technology leader, Phison is taking a systems-level approach to AI solutions spanning AI infrastructure, edge AI computing and AI software platforms. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260601070396/en/ Phison evolving data storage intelligence at COMPUTEX 2026 At COMPUTEX 2026, Phison is showcasing comprehensive AI storage and computing architecture solutions designed to address key challenges facing enterprises and end users in the AI era, including high AI deployment costs, GPU and memory limitations, data privacy concerns and the increasing storage bandwidth and power demands driven by AI workloads. Four Core Technology Directions for AI and High-Speed Sto
SymphonyAI Brings AI-Powered Assortment and Space Platform to Global CPGs, Compressing Category Review Cycles from Weeks to Days2.6.2026 01:35:00 EEST | Press release
Planogram compliance failures, undetected out-of-stocks, and the lag between headquarters planning and store-level execution cost grocers measurably in comp sales, shrink, and associate labor hours. The tools built for category planning have never been designed to close that execution gap. In response, SymphonyAI, a global leader in Vertical AI, today announced the availability of CINDE Assortment and Space for CPGs, an AI platform that closes the loop between assortment strategy, planogram execution, and in-store compliance, compressing the category review cycle from four to six weeks to a matter of days. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260602137061/en/ The platform is underpinned by SymphonyAI's Transferable Demand AI, a model trained across 25 years of retail data and validated in production across more than 500 global CPG deployments, including PepsiCo, Southern Co-op, and every one of the top 25 global CP
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom