Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
‘Concrete in Life 2025/26’ Winners Announced – Spectacular Photographs From Around the World22.4.2026 11:00:00 EEST | Press release
Powerful and striking images from around the world have been chosen as the winners of the Concrete in Life 2025/26 global photography competition, showcasing the essential role concrete plays in daily life, infrastructure, cities, and design. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260422352135/en/ OVERALL WINNER: Pillars Across the Sea by Celbert Palaganas, Cebu City, Philippines Run by the Global Cement and Concrete Association (GCCA), the annual competition received more than 20,000 entries from professional and amateur photographers, as well as smartphone users, spanning every continent. The competition highlights how concrete supports modern life while also offering moments of beauty, creativity and human connection. Thomas Guillot, Chief Executive of the GCCA, said: “The spectacular images submitted this year show concrete’s positive impact on people’s lives all over the world - sometimes practical, sometimes al
Netceed Publishes Its First Environmental, Social and Governance Report22.4.2026 10:30:00 EEST | Press release
Netceed, a global infrastructure supply chain solutions provider, has published our first Annual Environmental, Social and Governance (ESG) Report, marking a major milestone in the Group’s sustainability journey and reinforcing our commitment to transparency, accountability, and responsible business practices. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260422579806/en/ Netceed Sustainability Report 2025 The report presents Netceed’s progress across environmental, social, and governance topics, including the verification of its carbon footprint data by an independent third party and the completion of its first climate risk analysis. Key highlights include: A reduction in Scope 1 and 2 CO2e emissions compared to 2024 Improved gender diversity in senior management positions – we now have 23% of senior management positions filled by women 70% of our suppliers (by spend) are working with us on our climate action priorities A
IONCHI toivottaa AITO:n tervetulleeksi liittymään BMW:n ja Mercedes-Benzin kanssa premium-tason suurteholatausverkostojen kehittämiseen Kiinassa22.4.2026 10:21:00 EEST | Tiedote
IONCHI, BMW:n ja Mercedes-Benzin yhteisyritys suurteholatauspalvelujen alalla, ilmoitti tänään, että SERES liittyy yhtiöön tasavertaisena osakkaana. Tämän omistusjärjestelyn kautta SERES-konsernin premium-brändi AITO tukee IONCHI:n premium-latausinfrastruktuurin kehittämistä. Tämän lisäyksen myötä IONCHI jatkaa korkealaatuisten latauspalvelujen tarjoamista kehittyneen teknologian ja digitaalisten palvelujen avulla kaikille soveltuville ajoneuvoille sekä tarjoaa eksklusiivisia latauskokemuksia BMW:n, AITO:n ja Mercedes-Benzin asiakkaille. Laajentunut kolmen osapuolen kumppanuus merkitsee uuden vaiheen alkua premium-latausverkoston kehityksessä, mahdollistaen lisäkasvun ja laajemman asiakaskunnan. Kukin kolmesta osakkaasta omistaa 33,3 % yhteisyrityksestä. Vuonna 2024 perustettu IONCHI pyrkii parantamaan Kiinan premium-tasoista sähköisen liikkumisen kokemusta huipputeknisen julkisen suurteholatausverkoston avulla. Verkosto keskittyy keskeisiin sijainteihin kaupunkialueilla yhdistäen ultr
Europcar Mobility Group Announces Exclusive Partnership With MIC Co., Ltd. to Expand Presence in Japan22.4.2026 10:02:00 EEST | Press release
Europcar Mobility Group has entered into an exclusive partnership agreement with MIC Co., Ltd., the operator of Japan’s extensive "Niconico Rent-A-Car" network. This landmark agreement marks Europcar Mobility Group’s first exclusive partnership in the Japanese market, aimed at providing seamless mobility solutions for the growing number of international travelers visiting the region. Enhancing possibilities for Inbound Travelers Since April 10, 2026, customers can book car rentals at Niconico Rent-A-Car’s directly-operated airport locations through Europcar’s global booking platform, allowing foreign travelers to arrange their transportation in Japan from overseas using a familiar interface, eliminating common booking hurdles and improving the overall travel experience.To date, the service is available across key gateway locations: Major Airports: Haneda, Narita, New Chitose, Fukuoka, Kagoshima, Nagasaki, and Kumamoto. Key Transit Hubs: Shin-Yokohama Station and Kansai Airport Rinku To
SkySparc Acquires Covarius and Uniun22.4.2026 10:00:00 EEST | Press release
SkySparc, a trusted global provider of digital transformation solutions for treasury and finance institutions, today announced the acquisition of Covarius Group Limited (“Covarius”) and Uniun Technology Limited (“Uniun”). The acquisitions accelerate SkySparc’s European expansion and deepen its specialist support for treasury transformation. Financial terms were not disclosed. Covarius and Uniun operate complementary businesses together enabling a more complete, end-to-end treasury solution. Covarius specialises in the implementation and optimisation of treasury management systems, underpinned by deep partnerships and a well-established global presence. Uniun adds a real-time, API-based integration platform focused on ERP-to-TMS connectivity and cash forecasting, supported by AI and data science. For clients, the combined proposition the two companies bring centres on improved cash visibility and stronger cash flow prediction, with greater automation across treasury workflows, improving
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom