Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
New Polymorph of Indomethacin Discovered9.6.2026 18:00:00 EEST | Press release
Rigaku Corporation, a global solution partner in X-ray analytical systems and a group company of Rigaku Holdings Corporation (headquarters: Akishima, Tokyo; CEO: Jun Kawakami; “Rigaku”), announced that the results of a joint research project conducted with Shionogi & Co., Ltd., JEOL Ltd., and Meiji Pharmaceutical University have been published in Crystal Growth & Design, a world-renowned international journal in the field of crystallography. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260609347405/en/ Cover of the June 2026 issue of Crystal Growth & Design, featuring this research. This research uncovered a previously unknown polymorph (κ-form) of indomethacin, a widely used pain relief and anti-inflammatory drug. The research team also conducted structural analysis and characterization of the newly identified crystal form. Although indomethacin has been the subject of pharmaceutical research for years, the discovery of a
SLB Collaborates with Qualcomm on Edge AI Solutions for Energy Operations9.6.2026 17:28:00 EEST | Press release
Global energy technology company SLB (NYSE: SLB) today announced a memorandum of understanding with Qualcomm Technologies, Inc. to enable edge AI solutions for the energy industry, supporting real-time operational decision-making across wells, facilities and production systems. The collaboration combines Qualcomm Technologies’ low-power edge computing and AI processing capabilities, with SLB’s Agora™ edge AI and IoT solutions developed for remote and operationally complex environments. “Together, SLB and Qualcomm Technologies aim to help operators apply AI more effectively across energy infrastructure,” said Rakesh Jaggi, president, Digital, SLB. “Many energy operations rely on real-time decision-making in remote environments where connectivity and responsiveness directly affect performance. AI systems designed around the realities of energy operations can help support more consistent and autonomous workflows across those environments.” Energy operators are increasingly adopting automa
RevBits and Stony Brook University’s Ethos Lab Establish a Collaborative Partnership to Further the Field of Cyber Security Education and Application9.6.2026 17:15:00 EEST | Press release
Stony Brook University’s (SBU) Ethos Lab, in the College of Engineering and Applied Sciences Department of Computer Science, recently announced a collaborative partnership with RevBits, LLC. Through the partnership, SBU’s Ethos Lab will utilize the RevBits solutions suite to build computer science labs and a cybersecurity-focused curriculum, reinforcing lessons from the classroom. The platform simulates environments containing five major threat landscapes, including Endpoint Security, Privileged Access Management, Email Security, Zero Trust Network and Deception Technology. SBU’s Department of Computer Science was recently designated as a National Center of Academic Excellence in Cybersecurity Research and will utilize the partnership to advance student education and equip them with the knowledge to face modern threats in a realistic, contained environment. David Schiffer, CEO, RevBits, said, "We are incredibly proud to participate in the educational process in general and specifically
Andersen Global Strengthens Global Mobility Capabilities with Addition of Courdid BV9.6.2026 16:30:00 EEST | Press release
Andersen Global has entered into a Collaboration Agreement with Courdid BV, a Netherlands-based global mobility firm, further strengthening its cross-border workforce and expatriate advisory capabilities. Founded nearly two decades ago, Courdid BV offers a comprehensive suite of advisory services spanning wage tax, expatriate taxation, payroll, immigration, and employer of record solutions. The firm partners with multinational employers, public sector entities, and professional service providers to deliver practical, tailored guidance on complex cross-border workforce matters — distinguished by a client-first approach that prioritizes accessibility and personal service. “We believe in keeping things practical and relevant for our clients, particularly in areas that are often overly complex,” said Jean-Paul van ‘t Hof, managing partner of Courdid BV. “Becoming a collaborating firm of Andersen Global allows us to support clients more broadly while strengthening our ability to address cro
Marie® by Leo Cancer Care Makes History at Stanford Medicine — World First in Compact Upright Proton Therapy9.6.2026 16:22:00 EEST | Press release
Following the landmark first treatment at Stanford Medicine Cancer Center Care June 4, Leo Cancer Care today announces the role of its Marie® upright patient positioning and imaging platform in enabling the world's first compact upright proton therapy patient treatment. Delivered using the Mevion S250-FIT™ Proton Therapy System and powered by RayStation from RaySearch, the milestone is the culmination of a decade of development. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260609870736/en/ The treatment room at Stanford Medicine Cancer Center, Palo Alto, California, housing the Marie® upright patient positioning platform by Leo Cancer Care (center foreground) integrated with the Mevion S250-FIT™ Proton Therapy System. The circular rotating platform enables a patient seated in the Marie® chair to rotate 360 degrees in relation to a fixed proton beam — replacing the large rotating gantries required by traditional proton ther
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom