Binarly Releases Free Detection Tool for XZ Backdoor
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Vietnam’s C4IR and Ant International Partner to Accelerate Innovation as Ho Chi Minh City Eyes Becoming International Financial Centre27.11.2025 05:46:00 EET | Press release
The Vietnam Centre for the Fourth Industrial Revolution (C4IR Vietnam), established by the World Economic Forum and the People’s Committee of Ho Chi Minh City, and Ant International today announced a strategic partnership through a Memorandum of Understanding (MoU) to advance Vietnam’s digital economy, foster innovation, and support Ho Chi Minh City’s (HCMC) ambition to become an international financial centre and regional fintech hub. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251126280083/en/ The partnership was announced at the Ho Chi Minh City Economic Forum 2025, officiated by Vietnam’s Prime Minister Pham Minh Chinh and Chairman of the Ho Chi Minh City People’s Committee Nguyen Van Duoc. As Vietnam emerges as one of Asia’s most dynamic engines of trade, travel, and inclusive digital finance, the collaboration between C4IR Vietnam and Ant International aims to accelerate the country’s Fourth Industrial Revolution ag
LambdaTest and SVAM International Inc. Announce Partnership to Transform Quality Engineering for Businesses26.11.2025 19:00:00 EET | Press release
LambdaTest, a Gen-AI native quality engineering platform, announced a partnership with SVAM International, Inc., a global leader in digital transformation services. This strategic alliance marks a significant step forward in their mission to transform quality engineering for businesses worldwide. The partnership allows LambdaTest to extend its AI-native quality engineering capabilities into SVAM’s extensive digital transformation ecosystem. By integrating with SVAM’s experience in large-scale application development, testing, and delivery across major New York State and City agencies, as well as their platform expertise across Salesforce, ServiceNow, and Dynamics365, LambdaTest will empower more enterprises to modernize their software delivery pipelines. With LambdaTest’s intelligent test orchestration and execution engine at the core, teams can test smarter, accelerate release cycles, and achieve faster time-to-market at scale. Founded in 2017, LambdaTest is headquartered in San Franc
GLORY Acquires Remaining Equity Shares in Acrelec Group26.11.2025 17:11:00 EET | Press release
Glory Global Solutions (International) Ltd, a wholly-owned subsidiary of GLORY Ltd. [TYO:6457], has announced the acquisition of the remaining equity shares in Acrelec Group SAS. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251126039437/en/ Acrelec is a global technology company focused on reinventing the customer experience for restaurant and retail brands. Leveraging decades of software, hardware and service expertise, the company develops and integrates new platforms that increase customer engagement, optimize efficiency and improve operations. With over 120,000 installations across more than 70 countries, Acrelec counts many of the world’s best-known restaurant mega-brands among its customers. We announce that Jalel Souissi has left the Acrelec Group following the completion of the recent share acquisition. Jalel Souissi has played a pivotal role in the development and success of Acrelec, serving as Co-Founder and Co-C
Cegid Acquires Shine to Accelerate the Path of Becoming Europe's Leading Financial Copilot for SMBs and Accountants26.11.2025 15:00:00 EET | Press release
Cegid, a European leader in cloud software for finance, accounting, HR, and retail software, and Shine, a fast-growing European fintech unicorn providing digital business accounts and payments, e-invoicing, accounting, and payroll software to small businesses across Europe, announced today that the companies have entered a definitive agreement to join forces to form a European champion and become a leading provider of software for businesses and their accountants. This transformational combination will create the first fully integrated, cloud-native and AI-driven financial hub for SMBs and accounting professionals in Europe – bringing together market-leading capabilities in e-invoicing, accounting, digital business accounts and payments, tax, HR, and payroll in a single unified platform. Accelerating Cegid’s European growth strategy by serving more than one million SMBs, and 15,000 accountants Shine brings to Cegid more than 400,000 SMB customers, a strong brand, and a highly scalable
U.S. FDA Grants Priority Review to Sonrotoclax for the Treatment of Relapsed or Refractory Mantle Cell Lymphoma26.11.2025 13:00:00 EET | Press release
BeOne Medicines Ltd. (Nasdaq: ONC; HKEX: 06160; SSE: 688235), a global oncology company, today announced that the U.S. Food and Drug Administration (FDA) has accepted and granted Priority Review to a New Drug Application (NDA) for sonrotoclax, a next-generation BCL2 inhibitor, for the treatment of adult patients with relapsed or refractory (R/R) mantle cell lymphoma (MCL), following treatment with a Bruton’s tyrosine kinase (BTK) inhibitor. “Sonrotoclax is advancing with remarkable speed, from Breakthrough Therapy Designation to Priority Review, all within a short window,” said Lai Wang, Ph.D., Global Head of R&D at BeOne. “That pace reflects both the strength of the data and the urgency of the need for patients with R/R MCL. With rapid, deep, and durable responses and a manageable safety profile, sonrotoclax is emerging as a potential best-in-class BCL2 inhibitor, alongside our two other transformative hematology assets – BTK inhibitor BRUKINSA, and investigational BTK degrader BGB-16
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom