Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
BEYOND Developments Unveils EVERMORE Masterplan on Marjan Beach in Ras Al Khaimah18.2.2026 08:00:00 EET | Press release
BEYOND Developments unveiled EVERMORE, its first fully masterplanned destination on Marjan Beach in Ras Al Khaimah, marking the opening chapter of BEYOND’s 2026 growth strategy and a bold expansion beyond Dubai. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260217969384/en/ EVERMORE by BEYOND Developments - The Essence of French Living at Marjan Beach, Ras Al Khaimah (Photo: AETOSWire) Strategically located opposite Wynn Al Marjan Island, EVERMORE is a long-term lifestyle and residential waterfront district framed by the sea and Marjan’s future botanical garden. The masterplan blends French classical elegance with contemporary architecture, integrated nature, and lifestyle-focused placemaking, creating a distinctive setting where architecture, hospitality, and public spaces harmonize with water and greenery. Mahdi Amjad, Founder and Executive Chairman of BEYOND Developments, said: “Ras Al Khaimah is witnessing a new phase o
Westlake Epoxy Expands Distribution Relationship with Brenntag to India18.2.2026 03:30:00 EET | Press release
Westlake Corporation (NYSE: WLK) today announced that Westlake Epoxy will expand its long‑standing distribution relationship with Brenntag to South and West India. The agreement builds on a successful collaboration across Europe, North and South America, and Southeast Asia, extending Westlake Epoxy’s reach into one of the world’s fastest‑growing coatings, adhesives and construction markets. Under the expanded collaboration, Brenntag will distribute Westlake Epoxy’s established portfolio of epoxy solutions for coatings, adhesives and construction applications, including the EPON™, EPIKOTE™, EPIKURE™ and EPI‑REZ™ product lines. Customers are expected to benefit from reliable local supply, technical service and application‑focused formulation support tailored to regional requirements. India’s coatings, adhesives and construction sectors continue to grow, driven by infrastructure investment, urbanization and increasing performance expectations. By combining Westlake Epoxy’s proven epoxy te
Compass Pathways Launches Proposed $150.0 Million Public Offering17.2.2026 23:06:00 EET | Press release
Compass Pathways plc (Nasdaq: CMPS), a biotechnology company dedicated to accelerating patient access to evidence-based innovation, announced today the launch of a proposed public offering of $150.0 million of American Depositary Shares (“ADSs”), each representing one ordinary share, and in lieu of ADSs, to certain institutional investors, pre-funded warrants to purchase ADSs. All securities are being offered by Compass Pathways. Compass Pathways expects to grant the underwriters a 30-day option to purchase up to an additional $22.5 million of ADSs at the public offering price, less the underwriting discounts and commissions . The proposed offering is subject to market and other conditions, and there can be no assurance as to whether or when the proposed offering may be completed, or as to the actual size or terms of the proposed offering. Jefferies, TD Cowen, Cantor and Stifel are acting as joint book-runners for the proposed offering. H.C. Wainwright & Co. is also acting as lead mana
Lattice Launches Joint Cyber Resilience Reference Kit with EXOR International and TrustiPhi to Simplify Secure Device Development17.2.2026 23:00:00 EET | Press release
Lattice Semiconductor (NASDAQ: LSCC), the low power programmable leader, today announced a Cyber Resilience Reference Kit designed to help industrial and edge device manufacturers accelerate secure system design, developed in collaboration with EXOR International and TrustiPhi. Built on the Lattice MachXO3D™ secure control FPGA, EXOR International’s industrial edge platform, and TrustiPhi’s integrated security orchestration platform, the kit enables hardware‑rooted trust, secure lifecycle management, and industrial‑grade connectivity to accelerate cyber resilient system design. “Security can no longer be an afterthought, especially at the industrial edge. With this collaboration, we’re giving customers a practical, integrated way to accelerate secure system development and support emerging requirements such as the EU Cyber Resilience Act,” said Karl Wachswender, Senior Principal System Architect Industrial, Lattice Semiconductor. “Through our early access program, major industrial comp
Capvidia and Hexagon to Host Live Webinar on Building a “Real” Digital Thread from Design to Inspection Using MBD, QIF, and PC-DMIS17.2.2026 20:50:00 EET | Press release
Capvidia, a global leader in Model-Based Definition (MBD) and model-based interoperability, announced it will co-host a live webinar with Hexagon focused on creating a seamless digital thread that connects design, production, and inspection using MBD, the Quality Information Framework (QIF), and Hexagon’s PC-DMIS metrology software. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260217927277/en/ Connecting design to inspection—without the rework. Capvidia + Hexagon show how MBD + QIF power a real digital thread into PC-DMIS for faster, traceable, more accurate inspection. Titled “Connected for Success: Unlock seamless data flow and precision from design to inspection”, the webinar will take place on Wednesday, February 25, 2026, at 9:00 AM EST / 2:00 PM GMT. Attendees will see a practical demonstration of how an integrated approach can reduce manual data entry, minimize translation errors, preserve design intent, and improve
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom