Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
IQM and Real Asset Acquisition Corp. to Host Conference Call/Webcast to Discuss Proposed Transaction27.2.2026 14:00:00 EET | Press release
IQM Finland Oy, a global leader in full-stack superconducting quantum computers (“IQM”, “IQM Quantum Computers” or the “Company”), and Real Asset Acquisition Corp. (Nasdaq: RAAQ), a special purpose acquisition company (“RAAQ”), announced that they will host a conference call to discuss their recently announced business combination, including certain transaction highlights. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260227472716/en/ IQM Radiance quantum computer As previously disclosed, on February 23, 2026, IQM and RAAQ announced they have entered into a definitive business combination agreement, which will result in IQM becoming a public company and listing American Depositary Shares on one of the two leading U.S. stock exchanges. The transaction provides funding with the aim to accelerate IQM’s technology and commercial development towards fault-tolerance quantum computing, further advancing its position as a leading p
HighRadius Launches $0 Implementation Fee, $0 Subscription Fee via Outcome Based Pricing for oCFO Software27.2.2026 13:00:00 EET | Press release
HighRadius launches Office of the CFO first Outcome Based Pricing with $0 Implementation fee and $0 Subscription until Go-Live. Customers only pay a fraction of realized gains based on P&L impact. Chapter 1: Outcome Based Pricing (OBP) Introduction of OBP: HighRadius, a provider of 190+ AI agents for Order-to-Cash, Accounts Payable, Record-to-Report, and Treasury introduces Outcome Based Pricing (OBP). Three Components of OBP: Customers pay a) $0 in Implementation fees, b) $0 in Subscription fees until Go Live, c) HighRadius earns a fraction of the actual savings realized by the client. Chapter 2: US GAAP & ASC 606 Constraints Not Designed for Innovation: The traditional ASC 606 model requires companies to standardize and recognize revenue based on contractual obligations. For a traditional SaaS subscription, the obligation is access to software over time. AI agents are designed to deliver quantifiable, real-time Business Outcomes that do not fit the traditional accounting framework. C
Kioxia Appoints Yoshihiko Kawamura as Chief Financial Officer27.2.2026 10:15:00 EET | Press release
Kioxia Holdings Corporation (TOKYO:285A), a world leader in memory solutions, today announced the appointment of Yoshihiko Kawamura as Chief Financial Officer (CFO), effective April 1, 2026. Mr. Kawamura brings extensive international experience to Kioxia, having held assignments at Mitsubishi Corporation’s U.S. headquarters, served as General Manager of its Chicago office, and completed a tenure at the World Bank. At Hitachi, Ltd., he held senior leadership positions, including Chief Strategy Officer (CSO), Chief Financial Officer (CFO), and Chief Risk Management Officer (CRMO), where he was instrumental in leading the company’s management reforms. Since joining Kioxia as Executive Vice President in June 2025, Mr. Kawamura has worked closely with the executive team to advance the business through strategic capital and financial planning. Following its initial public offering on the Prime Market of the Tokyo Stock Exchange in December 2024, Kioxia is entering a new phase of growth char
DNP Invests in Rapidus to Support the Establishment of Mass Production for Next-Generation Semiconductors27.2.2026 09:18:00 EET | Press release
Dai Nippon Printing Co., Ltd. (DNP, TOKYO:7912) today announced that it has participated in Rapidus Corporation’s funding round as one of the round investors. This strategic funding initiative supports Rapidus’ plan to steadily progress from its current R&D phase to mass production of 2nm (10⁻⁹ meters) logic semiconductors by 2027. Through this initiative, DNP will advance the development and mass production of EUV lithography photomasks and support Rapidus as it establishes a mass production system for 2nm & next-generation semiconductors. Background In recent years, the rise in energy consumption, in line with increased data generation, has become a challenge, driving demand for next-generation semiconductors capable of improving device performance and reducing power consumption. Next-generation semiconductors manufactured using EUV lithography enable the formation of finer patterns on silicon wafers compared to currently available technologies. This in turn is boosting expectations
EdgeConneX Looks to Enter Swedish Market as Part of European Data Center Expansion Strategy27.2.2026 09:05:00 EET | Press release
EdgeConneX®, an EQT portfolio company with an extensive Pan-European data center footprint, looks to expand its presence with a new site located in Skellefteå, Sweden. The data center site will be acquired from Lyten, a global company that specializes in lithium-sulfur batteries and energy storage. The site would support EdgeConneX broader strategy to expand digital infrastructure capacity across the Nordics. Subject to the completion of applicable administrative and regulatory processes, EdgeConneX will look to develop a data center campus with potential capacity of up to one gigawatt in support of future AI and cloud computing workloads. Upon completion, the data center campus would be one of the largest facilities in Europe that would be primarily powered by renewable energy. “Sweden represents an attractive long‑term market for digital infrastructure investment. The country’s access to renewable energy, stable power grid, technical workforce and strong sustainability framework alig
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom