Binarly Releases Free Detection Tool for XZ Backdoor
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Lenovo Group: Second Quarter Financial Results 2025/2620.11.2025 01:45:00 EET | Press release
Lenovo GroupLimited (HKSE: 992) (ADR: LNVGY), together with its subsidiaries (‘the Group’), today reported record results for the second quarter of fiscal year 2025/26, with overall group revenue reaching an all-time high of US$20.5 billion, up 15% year-on-year. Adjusted net income[1] grew 25% year-on-year to US$512 million, and adjusted net income margin expanded to 2.5%, driven by higher revenues. Together, these reflect the strength of the Group’s operational performance as they exclude the impact of non-cash fair value loss on warrants, notional interest on convertible bonds, and other non-cash items. The Group delivered double-digit year-on-year revenue growth across all main business groups and sales geographies. The AI-related revenue mix increased by 13 percentage points year-on-year, accounting for 30% of the Group’s total revenue this quarter. The growth was driven by high-double-digit revenue growth in AI Servers and triple-digit revenue growth in AI PCs, AI smartphones, and
OCP Announces Date of Third Quarter and Nine-Month 2025 Earnings19.11.2025 23:05:00 EET | Press release
OCP S.A. (“OCP” or the “Company”), a global leader in the fertilizer industry, will release its third quarter and nine-month 2025 results on Tuesday, November 25, 2025. The results will be available to holders of the Company’s bonds, qualified institutional buyers, securities analysts and market makers on the OCP Intralinks portal from 9:00 a.m. EDT, 3:00 p.m. Morocco (GMT+1), and 2:00 p.m. London time (GMT). OCP senior management will host a conference call to discuss third quarter and nine-month 2025 results at 10:00 a.m. EDT, 4:00 p.m. Morocco (GMT+1), and 3:00 p.m. London time (GMT) on Tuesday, November 25, 2025, for holders of the Company’s bonds, qualified institutional buyers, securities analysts and market makers. Eligible parties that have not already registered for access to the Intralinks portal may do so by contacting the Investor Relations Department by emailing g.laraki@ocpgroup.ma. About OCP OCP is a global leader in the fertilizer industry, backed by almost a century’s
Marquee Brands Broadens Global Portfolio with Strategic Acquisition of Stance19.11.2025 22:00:00 EET | Press release
Marquee Brands, the premier global brand accelerator, today announced the acquisition of Stance, the innovative lifestyle and performance sock brand. Founded in 2009 in San Clemente, California, Stance joins Marquee Brands’ renowned portfolio, home to some of the world’s most notable brands, including Martha Stewart, Laura Ashley, Sur La Table, BCBG, Ben Sherman, Body Glove and Dakine. The addition of Stance brings total retail sales across Marquee’s portfolio to $4.5 Billion USD. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251119216623/en/ Marquee also announces a new partnership with United Legwear and Apparel Co. (ULAC), which becomes the brand’s core global licensee, managing operations across all territories apart from China. With products sold in 42 countries through more than 1,100 U.S. wholesale accounts, e-commerce, international distributors and mono-branded retail stores, ULAC will oversee Stance’s core product
AWS and HUMAIN Expand Partnership with NVIDIA AI Infrastructure and AWS AI Chip Deal to Drive Global AI Innovation19.11.2025 20:38:00 EET | Press release
Amazon Web Services, Inc. (AWS), an Amazon.com, Inc. company (NASDAQ: AMZN), and HUMAIN, a Public Investment Fund (PIF) company delivering global full-stack AI solutions, announced today at the U.S.-Saudi Investment Forum their plans to provide, deploy and manage up to 150,000 AI accelerators in a data center facility known as an “AI Zone” in Riyadh. As part of the expanded partnership, AWS will become HUMAIN’s preferred AI partner globally, and the two companies will collaborate to bring AI compute and services from Saudi Arabia to customers worldwide. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251119637708/en/ Tanuja Randery, Managing Director, Europe, Middle East & Africa, AWS and Tareq Amin, CEO of HUMAIN The first-of-a-kind AI Zone in Saudi Arabia will support cutting-edge AI training and inference workloads with access to the latest NVIDIA GB300 AI infrastructure and AWS’s Trainium AI chips. The infrastructure will
Luma AI Raises $900 Million Series C Led by HUMAIN And Partners on 2 Gigawatt AI Supercluster in Saudi Arabia19.11.2025 19:15:00 EET | Press release
Luma AI, the frontier artificial intelligence company building multimodal AGI, today announced it has raised $900 million in Series C funding, led by HUMAIN, a PIF company delivering global full-stack AI solutions, with significant participation from AMD Ventures, and existing investors Andreessen Horowitz, Amplify Partners, and Matrix Partners. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251119678010/en/ (L–R) Amit Jain, CEO of Luma AI, and Tareq Amin, CEO of HUMAIN, at the U.S.–Saudi Investment Forum in Washington, D.C., where Luma AI announced its $900 million Series C and partnership on Project Halo - a 2-gigawatt AI supercluster in Saudi Arabia that will power next-generation World Models and accelerate the path toward Multimodal AGI. This Series C is a milestone in the company’s mission to build multimodal general intelligence: AI that can generate, understand, and operate in the physical world. To train and deploy
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom