Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Uptime Announces Annual Outage Analysis Report 202613.5.2026 13:02:00 EEST | Press release
Uptime Institute today announced the release of its 8th Annual Outage trends report, an ongoing series from Uptime Institute Intelligence analyzing IT service resiliency. Outage prevention continues to be a central focus for data center operators as demand growth, AI-driven workloads and power constraints reshape risk profiles. As design and operations improve, operators must still navigate greater system complexity, grid instability, deeper interdependencies and evolving external threats. The 8th Annual Outage Analysis 2026 report analyzes recent data on the causes, frequency and consequences of IT and data center outages. For the fifth consecutive year, Uptime Intelligence Research suggests that outage frequency on a per-site basis is declining. However, the pace of improvement has slowed compared to previous years and approximately 1 in 10 note their last outage had serious or severe impacts. In publicly reported outages, external infrastructure failures are becoming more prominent.
MTU Maintenance Lease Services Invests in TRecs to Digitalise Engine Transition Management13.5.2026 11:05:00 EEST | Press release
MTU Maintenance Lease Services B.V. (“MLS”), the engine leasing and asset management arm of MTU Maintenance, today announced a strategic minority investment in TRecs (trecs.aero). TRecs is a platform digitalising Open Item List (OIL) management across the engine lifecycle, from initial technical review through transitions, shop visits, and beyond. Terms of the transaction are kept confidential. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260513682497/en/ Through its deployment of TRecs, MLS moves further into its leading role in moving the engine leasing industry toward a cloud-based, collaborative standard designed specifically for leasing and asset management customers. MLS will use the platform across the engine lifecycle, from the initial technical review of acquired or leased-in engines through end-of-lease documentation and task tracking for lease returns, shop visits, and asset transitions, in a centralised, real-t
NIPPON KINZOKU Strengthens Promotion of "L-Core" as an Eco-Product: Functional Stainless Steel Achieving High Conductivity via Surface Modification13.5.2026 11:01:00 EEST | Press release
NIPPON KINZOKU CO., LTD. (TOKYO: 5491) (Headquarters: Minato-ku, Tokyo) is proud to announce the strengthened promotion of "L-Core," a functional stainless steel that utilizes proprietary surface modification technology to achieve extremely low contact resistance while maintaining the inherent corrosion resistance of stainless steel. We have repositioned L-Core as a strategic "Eco-Product" to support sustainable manufacturing. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260513728897/en/ While conventional stainless steel excels in corrosion resistance due to its "passive film," this same film typically acts as an electrical insulator. Consequently, components requiring conductivity have traditionally relied on high-cost nickel (Ni) plating or conductive tapes. L-Core solves this challenge by making the passive film itself conductive. This breakthrough ensures high conductivity in the material alone, streamlining the manuf
Hermes Reply Presents Brick Cognitive, the Agentic Operating System for Manufacturing13.5.2026 11:00:00 EEST | Press release
Hermes Reply, the Reply Group company specialized in digital transformation for manufacturing, presents Brick Cognitive, the new agentic operating system designed to bring AI to the centre of industrial operations. A natural extension of Brick Reply, Reply’s next-generation MES/MOM platform, Brick Cognitive introduces a model in which factory systems no longer simply execute and monitor operations, but isable to interpret what is happening, correlate events and guide action across production, quality, maintenance and planning. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260513981153/en/ Brick Reply, Reply’s next-generation MES/MOM platform, Brick Cognitive introduces a model in which factory systems no longer simply execute and monitor operations, but is able to interpret what is happening, correlate events and guide action across production, quality, maintenance and planning. In production environments, data and processe
MC Advances Supply Chain Transformation with Blue Yonder Cognitive Solutions13.5.2026 11:00:00 EEST | Press release
MC, the retail division of Sonae and a leading player in Portugal’s grocery market and health, wellness, and beauty retail across the Iberian Peninsula, has selected Blue Yonder Cognitive Solutions for Allocation and Replenishment to advance its supply chain transformation. With more than 400 stores across multiple formats, MC operates major supermarkets and hypermarkets such as Continente, along with convenience stores, health and wellness shops, and online grocery services. Blue Yonder’s advanced artificial intelligence (AI) and machine learning (ML) enabled solutions will help the company improve visibility into demand forecasting. The new solutions will be implemented by Blue Yonder Services. “The grocery retail sector is adapting to a period of significant change, underlining the need for more agile operations across the supply chain. We needed end-to-end visibility and faster, more accurate inventory planning to address demand uncertainty while prioritizing our business goals,” s
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom