Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
SPIE Awards $351,000 in Scholarships to 85 Students Shaping the Future of Optics and Photonics28.5.2026 21:15:00 EEST | Press release
SPIE, the international society of optics and photonics, announced awarding $351,000 in scholarships that will provide support to 85 SPIE Student Members studying optics, photonics, or a related field. The scholarships range from $3,000 to $11,000 and awardees are selected by the SPIE Scholarship Committee from a roster of applicants. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260528142502/en/ “I am deeply passionate about advancing the inclusion of women and other underrepresented groups in the fields of optics and photonics, which makes it especially meaningful to be recognized as a recipient,” said Alana Gonzales, who received a $10,000 Women in Optics Scholarship. “Being able to apply this scholarship toward tuition, fees, and essential academic expenses such as books and electronics will both ease the financial burden of the final year of my PhD program and help position me for continued success.” “Congratulations t
Rubedo’s RLS-1496 Reduces Actinic Keratosis Pre-Cancerous Skin Lesions by 46% at Four Weeks with Minimal Irritation in Preliminary Results of Phase 1b/2a Study28.5.2026 15:30:00 EEST | Press release
Rubedo Life Sciences, Inc. (Rubedo), an AI-driven, clinical-stage biotech focused on selective cellular rejuvenation medicines targeting aging cells, today announced preliminary results from a Phase 1b/2a study of RLS-1496 in patients with actinic keratosis (AK), a common age-related condition resulting in precancerous skin lesions, that is most commonly seen after age 65.1 The open-label multi-center trial, conducted in the United States, assessed the safety, tolerability, and clinical effects of RLS-1496 1% cream in adult patients with AK on the forearms. RLS-1496 is the first selective glutathione peroxidase 4 (GPX4) modulator to be studied in human trials, and the first targeting cellular rejuvenation as a new therapeutic pathway in a novel category called Adaptive SenoTherapeutics. Interim data from the study were presented at the RBC Capital Markets Global Healthcare Conference in New York City on May 19, 2026. Preliminary RLS-1496 Actinic Keratosis Trial Results The Phase 1b/2a
ExaGrid Wins 5 Industry Awards at Network Computing Awards 202628.5.2026 15:00:00 EEST | Press release
ExaGrid®, the world’s largest independent backup storage vendor providing Tiered Backup Storage with the most Comprehensive Security and AI-Powered Retention Time-Lock for Ransomware Recovery, today announced that company was honored with five industry awards, including Air-gapped Ransomware Recovery Product of the Year, Bench Tested Product of the Year, Company of the Year, Data Protection Product of the Year, and the Storage Product of the Year during the Network Computing Awards ceremony, held in London on May 21, 2026. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260528849813/en/ The ExaGrid team headed to the stage five times throughout the Network Computing Awards ceremony in London to accept awards for ExaGrid Tiered Backup Storage. Photo courtesy of Network Computing Awards. The Network Computing Awards are determined by public vote. The 2026 awards mark the eighth consecutive year of wins for ExaGrid at the Networ
Ardoq Launches AI-First Enterprise Architecture Platform28.5.2026 15:00:00 EEST | Press release
Ardoq, named a 5x Leader in the Gartner® Magic Quadrant™ for Enterprise Architecture Tools, today launched its AI-first enterprise architecture (EA) platform. The release grounds every Ardoq AI output in customers' live architecture data and introduces a new generation of AI agents capable of automating an estimated 40% of routine EA work. Architects today are being asked to defend decisions that generic AI is generating in seconds. Application rationalization choices. ERP transformation roadmaps. AI governance reviews. The questions land on the architect's desk, but the analysis underneath increasingly comes from AI assistants that do not know the architecture. Generic agents reason on whatever document is in front of them, not on the live relationships between applications, dependencies, capabilities, and risks. Ask a generic LLM to trace a five-step dependency chain across the real estate, and accuracy collapses. The answer arrives with confidence. The architect inherits the consequ
European DataWarehouse Launches DealDox ® , a Next-Generation Virtual Data Room Built specifically for the Securitisation Market28.5.2026 15:00:00 EEST | Press release
European DataWarehouse (EDW) announced today the launch of DealDox®, a secure virtual data room uniquely tailored to the needs of the securitisation and structured finance market. Developed in response to long‑standing challenges around transaction data and document management, DealDox provides a single, secure environment where all parties throughout the deal lifecycle can collaborate efficiently while maintaining high standards of security, governance, and regulatory alignment. DealDox enables the centralised management of transaction data and documentation, offering robust security, granular access controls, and clear audit trails. The platform integrates seamlessly with EDW’s existing regulatory reporting ecosystem, supporting smoother workflows from deal preparation through to disclosure and compliance. “As a market infrastructure, our role is to reduce complexity and make processes simpler and more transparent for all participants,” said Dr. Christian Thun, CEO of European DataWa
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom