Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Quectel Introduces NXP-based FCM365X Wi-Fi 6, Bluetooth LE 5.4, Zigbee and Thread Module for Smart Home and Industrial IoT Solutions24.6.2026 11:00:00 EEST | Press release
Quectel Wireless Solutions, a global end-to-end IoT solutions provider, today announces the launch of the FCM365X, a dual band Wi-Fi 6 and Bluetooth Low Energy (BLE) 5.4 module that is based on the NXP® Semiconductors RW612 wireless MCU and supports multiple protocols, including Zigbee and Thread. The module is powered by a high-performance Arm® Cortex®-M33 processor with TrustZone® technology, operating at up to 260MHz. It integrates 1.2MB of SRAM and 8MB of Flash memory, with optional PSRAM expansion available, delivering the performance and memory capacity required for demanding IoT applications. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260624781458/en/ Quectel introduces NXP-based FCM365X Wi-Fi 6, Bluetooth LE 5.4, Zigbee and Thread module for smart home and industrial IoT solutions As smart home and industrial IoT ecosystems continue to evolve, support for interoperable standards such as Thread and Zigbee is becom
Boomi Announces Its FY26 EMEA Customer Innovation Award Winners24.6.2026 11:00:00 EEST | Press release
Boomi, the data activation company for AI, today announced the EMEA winners of its FY26 Boomi Customer Innovation Awards, at Boomi World Tour London, taking place 23–24 June 2026 at the Park Plaza Westminster Bridge, London. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260624407145/en/ Boomi Announces Its FY26 EMEA Customer Innovation Award Winners Across Europe, the Middle East and Africa, a new generation of organisations is redefining what it means to be a data-driven business. This year's EMEA Customer Innovation Award winners have done more than implement technology, they have fundamentally changed how their organisations operate, compete, and grow. Working with the Boomi Enterprise Platform, they have turned fragmented data into strategic advantage, replaced manual complexity with intelligent automation, and in many cases laid the groundwork for enterprises built to move faster, decide smarter, and act with confidenc
Takeda Announces New Assignments of Directors and Appointment of Julie Kim as Representative Director, President and CEO24.6.2026 10:05:00 EEST | Press release
In the final step of its 18-month CEO transition, Takeda (TOKYO:4502/NYSE:TAK) today announced that Julie Kim was officially appointed Takeda’s Representative Director, President and Chief Executive Officer. During the 150th Annual General Meeting of Shareholders, which took place in Osaka, Japan, shareholders elected Julie as a new internal director to the Board of Directors. Following the vote and conclusion of the meeting, the Board of Directors appointed her as Representative Director, President & CEO. Upon conclusion of the meeting, former president & CEO Christophe Weber retired from the Company and the Board. Chair of the Board of Directors Meeting, Masami Iijima, commented: “On behalf of Takeda’s Board of Directors, I would like to congratulate Julie Kim on becoming Takeda’s President and CEO. The Board of Directors is confident in Ms. Kim to drive executional excellence as Takeda launches a number of highly anticipated medicines and grows long-term shareholder value. The Board
Over Half of Consumers Will Pay More for Brands That Are Transparent About AI Data Use, New Usercentrics Research Finds24.6.2026 09:30:00 EEST | Press release
AI transparency has become a commercial differentiator, and it's reshaping where brand revenue is won — or lost. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260623804294/en/ Over half (52%) of consumers globally will pay more for brands that are transparent about how they use AI with their data at an average 7% premium. In Germany, that figure rises to 73% of consumers willing to pay a 9% premium, the highest of any market. The finding comes from the second annual State of Digital Trust 2026 Report, commissioned by Usercentrics, a leading data privacy technology company, and conducted by Sapio Research across 11,000 consumers in seven markets. The opportunity for brands that act is matched by the cost of inaction. Almost half (47%) of consumers surveyed have taken at least one action with a direct revenue consequence in the past six months because of concerns about how their data was being used in AI — canceling a subscri
LTM Joins Athena, a Chainguard-led Industry Coalition to Help Secure Open Source Software in the AI Era24.6.2026 09:30:00 EEST | Press release
LTM, the Business Creativity partner to the world’s largest enterprises, has joined Athena, a new industry coalition led by Chainguard, focused on protecting open source software from the rising threat of AI-driven vulnerabilities. Athena brings together leading organizations across the global software ecosystem to address an urgent challenge. As frontier AI models advance, they are increasingly capable of identifying novel vulnerabilities in open source software at machine speed, often faster than traditional disclosure and patching processes can respond. As AI accelerates both software development and the discovery of vulnerabilities, the window between a flaw being identified and being exploited has narrowed sharply. Athena is designed to close this gap through shared intelligence, coordinated action, and pre-disclosure remediation across the ecosystem. The coalition supports vulnerability management end to end, from discovery and analysis to patching, layered mitigations, and upstr
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom