Binarly Releases Free Detection Tool for XZ Backdoor
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Argo Infrastructure Partners Increases Ownership and Capital Commitment to TierPoint10.12.2025 00:00:00 EET | Press release
Argo Infrastructure Partners, LP (“Argo”), an established mid-market asset manager of essential infrastructure assets in North America, today announced it has acquired on behalf of its managed funds the equity interests of the majority of minority shareholders in TierPoint. The transaction reflects Argo’s continued conviction in TierPoint’s strategy and growth potential during a period of accelerating demand for TierPoint’s enterprise-class data center services. Since Argo’s initial investment in 2020, $3 billion of capital has been raised to fund growth and reduce TierPoint’s cost of capital by terming out debt facilities. The investment capital has advanced TierPoint’s market position as a data center services provider to enterprises, government organizations, hyperscalers and other consumers of state-of-the-art digital infrastructure. With these investments, Argo has supported the national expansion of TierPoint’s data center platform, and its efforts to meet and exceed customers’ r
Venture Global Announces Closing of $3,000,000,000 Senior Secured Notes by Venture Global Plaquemines LNG, LLC9.12.2025 23:30:00 EET | Press release
Venture Global, Inc. (“Venture Global”, NYSE: VG) announced today that its subsidiary, Venture Global Plaquemines LNG, LLC (“VGPL”) has closed an offering of $3,000,000,000 aggregate principal amount of senior secured notes, which has been issued in two series: (i) a series of 6.125% senior secured notes due 2030 in an aggregate principal amount of $1,750,000,000 (the “2030 Notes”) and (ii) a series of 6.500% senior secured notes due 2034 in an aggregate principal amount of $1,250,000,000 (the “2034 Notes” and, together with the 2030 Notes, the “Notes”). The 2030 Notes will mature on December 15, 2030, and the 2034 Notes will mature on June 15, 2034. Venture Global had previously announced the issuance of $2,500,000,000 of senior secured notes by VGPL on April 21, 2025, and $4,000,000,000 of senior secured notes by VGPL on July 3, 2025 (collectively, the “Existing Notes”), bringing the combined aggregate amount of senior secured notes issued by VGPL to $9,500,000,000 since the project
Doha Debates Hosts “In The Room: The Negotiators Podcast” Live at Doha Forum9.12.2025 19:09:00 EET | Press release
Qatar Foundation’s Doha Debates spotlighted the practice of high-stakes negotiation with a special live episode of its award-winning podcast with Foreign Policy, The Negotiators, at Doha Forum, following the launch of the podcast series’ fifth season on December 1. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209171106/en/ Doha Debates spotlighted the practice of high-stakes negotiation with a special live episode of its award-winning podcast with Foreign Policy, The Negotiators, at Doha Forum, following the launch of the podcast series’ fifth season on December 1. (Photo: AETOSWire) Held in collaboration with The Negotiators’ special partner for this season, the International Peace Institute (IPI), and Doha Debates’ longstanding production partner, Foreign Policy, the episode featured a compelling conversation between Prince Zeid bin Ra’ad bin Zeid Al Hussein, president and chief executive officer of the International
CoMotion GLOBAL 2025 Concludes in Riyadh with Landmark Deals and Global Mobility Breakthroughs9.12.2025 19:07:00 EET | Press release
CoMotion GLOBAL 2025 concluded today after three transformative days that brought together global decision-makers, industry leaders, city executives, innovators, and investors to chart the future of mobility in Saudi Arabia and worldwide. Hosted for the first time in the King Abdullah Financial District (KAFD), Riyadh, the event showcased the Kingdom’s accelerating role as a global hub for next-generation transportation, sustainability leadership, and urban innovation. With more than 100 sessions spanning three days, CoMotion GLOBAL showcased forward-looking mobility strategies, multimodal transport breakthroughs, urban digital transformation, AI applications, and the dramatic rethinking of the movement of people and goods across global cities. Key moments from the events included: Launch of the MIT x Kearney report, Envisioning the Future of Mobility Powered by AI, which called for unprecedented public–private collaboration, shared data ecosystems, and integrated national strategies t
HTEC Momentum Recognized as a Clutch Global Honoree and Champion for Fall 20259.12.2025 18:09:00 EET | Press release
HTEC Momentum (formerly Momentum Design Lab), HTEC’s research, product design, management and innovation arm, has earned two of Clutch’s highest distinctions—Global Award honoree and Clutch Champion—reaffirming its ninth straight year as the platform’s top-rated UX agency worldwide. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251209358771/en/ HTEC Momentum Recognized as a Clutch Global Honoree and Champion for Fall 2025 The Clutch Global Awards honorees are selected based on demonstrated industry expertise and exceptional delivery—evaluated through thousands of verified client reviews published on Clutch. Clutch’s rigorous, case-study-driven review process includes extensive verification to ensure the authenticity and depth of each submission. These distinctions further underscore HTEC Momentum’s position as a top-rated leader in UX strategy, design, and user research, reflecting the consistent satisfaction of our clients
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom