Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
OpenAI and Yubico Partner to Bring Custom Phishing-Resistant YubiKeys to OpenAI Users30.4.2026 20:13:00 EEST | Press release
Yubico (NASDAQ STOCKHOLM: YUBICO), the pioneer of phishing-resistant authentication and creator of the YubiKey, the gold standard of security keys, today announced an industry-first collaboration with OpenAI, the creator of ChatGPT. Beginning today, people can purchase a new 2-pack set of custom YubiKeys as part of OpenAI’s Advanced Account Security program – enabling them to secure their ChatGPT accounts with security keys, containing the strongest hardware-backed passkeys. Specifically designed for security-conscious users who are at increased risk of targeted digital attacks, the set includes a YubiKey C NFC for tap-to-authenticate on mobile, and a low profile YubiKey C Nano that stays in a port for everyday laptop use – both packed with modern authentication features for the highest level of protection. With OpenAI already using YubiKeys internally to protect their employees and infrastructure from sophisticated phishing, they are now bringing the same level of account security to
rhode Continues Its Global Retail Expansion Into Sephora Europe30.4.2026 19:00:00 EEST | Press release
rhode, the beauty brand founded by Hailey Rhode Bieber, will be available at Sephora online and in most stores across Europe beginning this September, following its 2025 rollout with Sephora in the U.S., Canada, and the U.K. This expansion into Sephora Europe increases global access to rhode through physical retail, marking a pivotal next stage for the brand. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260430569580/en/ rhode continues its global retail expansion into Sephora Europe. rhode’s collection of high-performance, skin-focused products saw strong performance in Sephora U.S. and Canada as the biggest brand launch in the retailer’s history in North America. When launched in November 2025 in the U.K., rhode was also the largest brand launch in Sephora U.K.’s history. “I’m so excited to continue our partnership with Sephora as we launch into retail in Europe, bringing rhode to more of our customers in a physical and I
ABS Acquires RMC Global to Strengthen Cyber, Risk and Resilience Capabilities30.4.2026 18:46:00 EEST | Press release
ABS, through its affiliate ABSG Consulting Inc. (ABS Consulting), has today announced the acquisition of RMC Global (RMC), a leading provider of industrial cybersecurity, risk management and resiliency solutions. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260430164690/en/ (L to R): Vince Kuchar, President, RMC Global, and David Wechsler, President and CEO, ABS Group The acquisition strengthens ABS Consulting’s capabilities and market position, bringing together two organizations with complementary expertise, shared values and a common mission. Combining RMC’s capabilities with ABS Consulting’s scale, technical depth and global resources, unlocks more integrated solutions for clients operating in increasingly complex risk environments. ABS Chairman and CEO John McDonald said: “Clients are facing increasing operational risk, cyber threats, and regulatory pressure. Bringing together the expertise of RMC and ABS Consulting s
Brightfin Unveils AI-Native Platform for IT Financial Management30.4.2026 18:00:00 EEST | Press release
Brightfin, the only ITFM and Technology Expense Management solution built natively on ServiceNow, today announced an AI-Native architecture that fundamentally improves how organizations manage IT spend. Rather than bolting AI onto legacy systems, Brightfin has engineered intelligence from the ground up - starting with the data, building contextual awareness on top of it, and delivering AI agents that speak the language of IT finance. Brightfin’s unified budget-to-billing data model creates a stable, governed foundation that connects contracts, invoices, inventory, and budgets into a single source of truth - something no external ITFM tool or native platform module can replicate. This is a structured financial backbone purpose-built for enterprise IT spend, and it’s what makes everything above it possible. A context-aware, AI-Native, intelligence layer understands relationships across the entire IT financial lifecycle - which vendors map to which services, which contracts are approachin
Andersen Consulting Strengthens Digital Transformation Capabilities with Weexa30.4.2026 16:30:00 EEST | Press release
Andersen Consulting enters into a Collaboration Agreement with Weexa, a global provider of digital transformation, B2B integration, and supply chain digitalization solutions. Headquartered in France, Weexa delivers end-to-end services that help organizations streamline, secure, and scale their digital ecosystems. The firm specializes in B2B data-flow management and digitalization, enabling seamless communication between applications both within and across organizations through technologies such as EDI, APIs, and e-invoicing. Weexa also provides SAP integration and supply chain solutions spanning warehouse and transport management, alongside strategic consulting, project delivery, and third-party application maintenance. Serving organizations across the food, retail, wholesale, logistics, transportation, automotive, healthcare, and media sectors, Weexa supports global businesses in optimizing performance while meeting evolving regulatory and digital-compliance requirements. “Collaborati
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom