Binarly Releases Free Detection Tool for XZ Backdoor
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
500 Global Announces Promotion of Mei Chel Tan to Global Managing Partner14.1.2026 13:00:00 EET | Press release
500 Global, one of the world’s most active venture capital firms1, today announced the promotion of Mei Chel Tan to Global Managing Partner. Her appointment reflects both her leadership in expanding 500 Global’s footprint across high-growth regions and the accelerating AI transformation that is positioning nascent and emerging markets as central drivers of the next era of global growth. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260114209489/en/ 500 Global announces promotion of Mei Chel Tan Mei Chel joined 500 Global in 2016 and was appointed Partner in 2023. Over the past decade, she has helped shape the firm’s expansion across Asia, Europe, Middle East and Africa — architecting the launch of early Asian investment funds and vehicles, leading market-entry strategies, developing national ecosystem diagnostics, and guiding governments and institutions in translating development priorities into actionable investment and d
Usercentrics Acquires MCP Manager to Bring Consent and Trust to AI14.1.2026 12:15:00 EET | Press release
Usercentrics, the global leader in Privacy-Led Marketing solutions, announced today it has acquired MCP Manager, a next-generation governance platform for the Model Context Protocol (MCP), built by a team with deep expertise in AI infrastructure. The acquisition makes Usercentrics the first major global market leader in data privacy solutions to extend consent and data guardrails into AI-driven workflows. The combined platform will deliver a unified Privacy-Led Marketing Suite that manages consent, preferences, and data governance across websites, apps, internal systems, and consumer-facing AI agents. Because these agents increasingly shape personalization and customer engagement, extending consent into real-time, model-driven interactions applies the same rigor that exists at data collection. This keeps experiences transparent, trusted, and aligned with user choices, and turns compliance into a strategic differentiator and competitive edge. “With this acquisition, we are defining how
Blue Shift Report Highlights Systemic Vulnerabilities Caused by the Hidden Cost of AI14.1.2026 11:00:00 EET | Press release
Arthur D. Little’s Blue Shift institute has published its latest report, AI’s Hidden Dependencies. This in-depth report, involving more than 50 experts, explores AI’s resource dependencies and the consequent direct systemic vulnerabilities for businesses and lays out strategic actions in response. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260114966898/en/ Arthur D. Little’s Blue Shift Institute has published its latest report, AI’s Hidden Dependencies With AI’s adoption and usage expected to remain on its growth trajectory, so is its strain on resources. The report notably identifies three main areas of dependency: Environmental impacts, including emissions due to AI’s heavy energy usage and the manufacture of related hardware Energy supply, including increased electricity demand and strain on the grid Compute infrastructure, including supply chain choke points and dependencies on dominant providers As AI is now becomin
Klarna Expands Digital Bank Offer with Peer-to-Peer Payments14.1.2026 10:00:00 EET | Press release
Klarna, the global digital bank and flexible payments provider, has launched instant peer-to-peer payments in 13 European countries, marking the next step in its evolution as a digital bank. The new feature enables Klarna customers to send money to friends and family, whether splitting bills or gifting cash, directly from the Klarna app: as simple as handing someone cash, with the protection of a regulated bank. This launch takes Klarna deeper into everyday banking, turning Klarna into a central hub for day-to-day spending and money management. It comes on the back of the Klarna Balance accounts and the rapid adoption of Klarna Card, with over 4 million sign-ups just four months after launch. Sebastian Siemiatkowski, co-founder and CEO of Klarna commented: “Customers are sick of the friction and fees of traditional banking, which is why millions signed up to Klarna Card within a few months of launch. With peer-to-peer payments we’re making it even easier to manage all of your payments
Northern Trust Secures Expanded Mandate with Swedish Pension Provider AMF Tjänstepension AB14.1.2026 10:00:00 EET | Press release
Northern Trust (Nasdaq: NTRS) today announced that it has retained and expanded its mandate with AMF Tjänstepension AB (AMF), a leading Swedish pension provider. Under the renewed agreement, Northern Trust, which has serviced AMF for more than 20 years, will continue to serve as custodian for AMF’s global pension assets and add investment operations for trade services across AMF’s total portfolio, for both pension and fund company assets. AMF is one of Sweden’s leading pension companies, managing occupational pensions for millions of individuals. With a strong focus on delivering secure and sustainable retirement outcomes, AMF combines cost efficiency with long-term investment strategies to benefit its members. Petra Sjögerås, head of Nordic Region, Northern Trust said: “As a long-standing partner to institutions in the Nordic region, Northern Trust brings extensive experience and a solutions-oriented mindset to proactively support our clients to achieve their goals now and in the futu
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom