Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Axelspace Announces Launch of Seven GRUS-3 Earth Observation Microsatellites, No Earlier Than July 202619.5.2026 11:30:00 EEST | Press release
Axelspace Corporation, a leading developer and operator of microsatellites dedicated to realizing its vision of “Space within Your Reach,” announced today that GRUS-3, a set of seven next-generation Earth observation microsatellites, is scheduled to be launched no earlier than July 2026. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260519449959/en/ Seven flight model of GRUS-3 next-generation Earth observation microsatellites ©Axelspace The seven GRUS-3 microsatellites will launch aboard the Transporter-17 rideshare mission via Exolaunch, a global leader in launch mission management, satellite integration, and deployment services, from Vandenberg Space Force Base in California, USA. We currently operate five optical Earth observation microsatellites, GRUS-1, under our Earth observation data service, AxelGlobe. With the launch of its successor, GRUS-3, it will expand its satellite constellation to more than 10 satellites. E
Money20/20 Europe Announces Powerhouse Speaker Lineup Featuring Leaders from Klarna, BBVA, ABN AMRO, Mastercard, eToro, and Revolut19.5.2026 11:10:00 EEST | Press release
Money20/20, the world’s leading fintech show and the place where money does business, today announced a stellar line-up of speakers for Money20/20 Europe happening on June 2-4 at the RAI in Amsterdam. The show will feature 450+ speakers across six stages, exploring the forces redefining global finance through AI innovation, digital assets, and regulatory transformation. Newly confirmed speakers include some of the most influential voices shaping the future of payments, banking, and financial services: Sebastian Siemiatkowski, Co-Founder and CEO, Klarna. A pioneer in the buy now, pay later revolution, Siemiatkowski has transformed consumer payments and continues to drive innovation in embedded finance and AI-powered shopping experiences. Onur Genç, CEO, BBVA. Leading one of Europe's most digitally advanced banks, Genç is at the forefront of banking transformation, leveraging data, technology, and customer-centric strategies to redefine financial services. Marguerite Bérard, Chief Execut
Mythic Acquires Videantis, One of Europe’s Leading Digital Processor IP Companies, to Build the World’s Most Energy-Efficient AI Compute Platform19.5.2026 11:00:00 EEST | Press release
Mythic, a pioneer in analog compute-in-memory and architect of the industry’s most energy-efficient AI acceleration technology, today announced it has acquired Videantis GmbH, one of Europe’s leading digital processor IP companies. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260519255958/en/ The transaction unites Mythic’s breakthrough analog compute platform with Videantis’ highly differentiated, unified digital processor architecture and production-proven software stack — accelerating Mythic’s delivery of a new class of hybrid AI compute platform with a 100x energy efficiency advantage over conventional GPU-based systems. This deal builds on Mythic’s recently announced agreement with Honda to co-develop next-generation AI chips for future vehicles — a validation of Mythic’s game-changing architecture in one of the world’s most demanding production environments. Together, the Honda collaboration and the Videantis acquisi
Splio Enters a New Phase of Its Regional Development in Southern Europe19.5.2026 10:00:00 EEST | Press release
A few months after launching its AI-first CRM, Splio is entering a new phase of its development in Southern Europe. Already established for more than 12 years in Spain, Portugal and Italy, the company has chosen to invest further in the region, convinced that it combines economic potential with rapidly evolving digital usage. Antoine Parizot, Splio’s co-CEO, is relocating to Barcelona, where the company’s historic office is based. At the same time, Donald Pontabry, COO and based in Spain for more than eight years, is taking responsibility for Southern Europe in addition to his current role. This development is supported by a regional team of around thirty people, spanning partnerships, business development, customer success and support. The team already works with around one hundred local clients, including Bodeboca, QVC, GoodNews, Gocco, Equivalenza, Lola Casademunt, Casa Viva, Piazza Italia, Conforama and Gaudi. “We see Southern Europe as much more than a region where we have a long-
KfW, Germany’s largest national promotional bank, future-proofs regulatory reporting, by migrating to Regnology Reporting Hub (RRH)19.5.2026 09:33:00 EEST | Press release
Regnology, a leading provider at the intersection of regulatory, risk, and supervisory technology, today announced that KfW Bankengruppe (KfW) is advancing its long-term partnership with the company by electing to migrate to the next-generation Regulatory Reporting Hub (RRH). The solution will be delivered as a cloud-native service on Rcloud, Regnology’s high-performance cloud architecture layer. This strategic move to the modern RRH platform future-proofs the mission-critical reporting functions for one of the world's leading promotional banks. Headquartered in Frankfurt am Main, KfW is a public‑law institution dedicated to supporting sustainable economic, social and ecological development in Germany, across Europe and globally. Regnology’s foresight led to the 2023 launch of Rcloud, its state-of-the-art architecture layer built on Google Cloud, enabling next‑generation solutions like RRH to operate with the full power of cloud-native design delivering the clear operational and strate
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom