Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Dominican Republic Drives Modernization of Electronic Passports Under the Leadership of the Thales - MIDAS Consortium26.3.2026 00:22:00 EET | Press release
The Presidency of the Dominican Republic, through the General Directorate of Passports, issued the country’s first electronic passport as part of its strategy to modernize and strengthen national security. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260324368065/en/ Passport of the Dominican Republic The new document was developed in partnership with Thales, world leader in advanced technologies for the Defense, Aerospace, Cybersecurity, and Digital sectors, and Midas Dominicana, a Dominican business group specializing in the comprehensive management of technology projects in the region. Together, both companies will guarantee the delivery of a passport that is more secure, reliable, and compliant with international standards. The project introduces and personalizes the country’s electronic passports, using advanced technologies to ensure the authenticity and protection of each document, while strengthening the national i
Dominican Republic Drives Modernization of Electronic Passports Under the Leadership of the Thales - MIDAS Consortium26.3.2026 00:22:00 EET | Press release
The Presidency of the Dominican Republic, through the General Directorate of Passports, issued the country’s first electronic passport as part of its strategy to modernize and strengthen national security. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260324368065/en/ Passport of the Dominican Republic The new document was developed in partnership with Thales, world leader in advanced technologies for the Defense, Aerospace, Cybersecurity, and Digital sectors, and Midas Dominicana, a Dominican business group specializing in the comprehensive management of technology projects in the region. Together, both companies will guarantee the delivery of a passport that is more secure, reliable, and compliant with international standards. The project introduces and personalizes the country’s electronic passports, using advanced technologies to ensure the authenticity and protection of each document, while strengthening the national i
Dominican Republic Drives Modernization of Electronic Passports Under the Leadership of the Thales - MIDAS Consortium26.3.2026 00:22:00 EET | Press release
The Presidency of the Dominican Republic, through the General Directorate of Passports, issued the country’s first electronic passport as part of its strategy to modernize and strengthen national security. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260324368065/en/ Passport of the Dominican Republic The new document was developed in partnership with Thales, world leader in advanced technologies for the Defense, Aerospace, Cybersecurity, and Digital sectors, and Midas Dominicana, a Dominican business group specializing in the comprehensive management of technology projects in the region. Together, both companies will guarantee the delivery of a passport that is more secure, reliable, and compliant with international standards. The project introduces and personalizes the country’s electronic passports, using advanced technologies to ensure the authenticity and protection of each document, while strengthening the national i
3D Systems Achieves Full-Scope EU MDR Certification, Accelerating European Launch of NextDent® Jetted Denture Solution Targeted for Summer 202625.3.2026 18:20:00 EET | Press release
3D Systems (NYSE: DDD) today announced it has received full-scope certification under the European Union Medical Device Regulation (EU MDR) 2017/745. The certification was attained on Monday, March 16, 2026. This milestone confirms that the Company’s quality system, technical documentation, and clinical evidence meet the most rigorous regulatory requirements in the medical device sector. With the MDR certificate in hand, 3D Systems will now introduce MDR-compliant product versions through a carefully coordinated, phased rollout across its dental product families and European markets. This approach ensures a smooth transition while maintaining uninterrupted product availability for customers and healthcare providers. The EU MDR certification immediately enables the introduction of innovative new materials and is a pivotal step for one of 3D Systems’ largest potential new product launches: the NextDent® Jetted Denture Solution. This solution forms the cornerstone of the Company’s ‘replac
Visa to Bring Privacy-Preserving Payments to Canton Network25.3.2026 18:00:00 EET | Press release
Visa (NYSE:V), a global leader in digital payments, today announced it will join the Canton Network as the first major global payments company to serve as a Super Validator, to help extend privacy‑preserving blockchain infrastructure to banks and financial institutions around the world. Visa will be one of 40 Super Validators on Canton. That move goes straight to a core challenge for financial institutions: the same transparency that gives blockchains their appeal can clash with privacy expectations financial institutions operate under. Canton Network, a blockchain built for regulated finance, has privacy built in from the beginning, so organizations can use shared infrastructure without exposing sensitive information. As a Super Validator, Visa will help clients who choose to run and secure operations on the Canton Network, applying the same trusted and reliable standards it uses to operate critical payment systems today. Institutions can experiment with and scale stablecoin payments,
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom