Binarly Releases Free Detection Tool for XZ Backdoor
1.4.2024 23:39:00 EEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Energy Dome and SRP to Add Long-Duration Energy Storage Project to the Grid, Expand Google Collaboration15.6.2026 16:30:00 EEST | Press release
Energy Dome, a leading provider of innovative capacity solutions for utilities and AI infrastructure, and Salt River Project (SRP), a not-for-profit public power utility serving the greater Phoenix metropolitan area, today announced an agreement to add a 19 megawatt (MW), 10-hour carbon dioxide-based (CO2) battery system to the grid. The project is planned to be co-located on the site of SRP’s Coronado Generating Station (CGS) in St. Johns, Arizona, and it will be developed under a 20-year tolling agreement, with Energy Dome owning and operating the facility and SRP dispatching its output. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260615027901/en/ Image: Rendering of Energy Dome’s energy storage system located at the Coronado Generating Station site The project is also part of Google and SRP’s innovative collaboration to accelerate deployment of non-lithium-ion long-duration energy storage (LDES) technologies that suppo
SLB Launches Digital Marketplace to Scale AI and Digital Innovation Across Energy15.6.2026 15:15:00 EEST | Press release
Global energy technology company SLB (NYSE: SLB) today announced the launch of the SLB Digital Marketplace, a curated digital destination designed to help energy companies rapidly discover and deploy specialized AI agents, domain models, skills, tools, data connectors and digital applications within their existing digital environments. The SLB Digital Marketplace extends the company’s open platform strategy to its Tela™ agentic AI assistant by enabling SLB, partners, independent software vendors (ISVs), developers and customers to bring purpose-built digital capabilities to the energy industry through a single, governed channel. All marketplace offerings are certified against SLB standards for security, interoperability and compatibility before listing. The launch comes as the industry moves toward agentic AI — where software can reason, act and automate across complex technical workflows. As these capabilities proliferate, energy companies will need access to a broader ecosystem of sp
Thales at Eurosatory 2026: Ready today. Ready tomorrow15.6.2026 15:01:00 EEST | Press release
As Eurosatory 2026 opens its doors, Thales is pleased to share with you a complete overview of the announcements that will be made during the first day of this international defense and security show. This document centralises all our news, innovations and partnerships, released on June, 15th, 2026 with direct links to the associated press releases: This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260615204020/en/ Thales at Eurosatory 2026: Ready today. Ready tomorrow. Thales unveils new AI-powered training data analytics platform to enhance military training.Thales launches next-generation 70mm laser-guided rocket dedicated for counter-drone operations.Thales unveils next-generation Bushmaster Mulga Utility Variant.Thales launches RapidStriker, a complete system for protection against drones.Renault Group and Thales unveil 4 TROOP, an innovative tactical vehicle for future land forces engagements. Thales press releases will b
Biocytogen Earns Full AAALAC Accreditation, Reinforcing Excellence in Translational Research and Drug Discovery15.6.2026 15:00:00 EEST | Press release
Biocytogen today announced that its Boston research facility has been awarded Full Accreditation by AAALAC International, a globally recognized organization dedicated to promoting excellence in laboratory animal care and use. The accreditation reflects Biocytogen’s continued commitment to maintaining the highest standards of animal welfare, scientific integrity, and operational excellence across its preclinical research and drug discovery activities. Biocytogen’s Boston facility serves as a key hub supporting the company’s expanding portfolio of drug discovery and translational research capabilities. The facility enables a broad range of in vivo studies supporting antibody therapeutics, multispecific antibodies, ADCs, cell therapies, and other innovative biologics programs for pharmaceutical and biotechnology partners worldwide. Through its proprietary BioMice™ platform, Biocytogen has established one of the industry’s most comprehensive collections of genetically engineered disease mo
SINOVAC Regained Compliance With the Nasdaq Global Market’s Listing Requirements15.6.2026 13:00:00 EEST | Press release
Sinovac Biotech Ltd. (Nasdaq: SVA) ("SINOVAC" or the "Company"), a leading provider of biopharmaceutical products in China, today announced that it received a notification letter dated June 10, 2026 (the "Notification Letter"), from Hearing Advisor of The Nasdaq Stock Market LLC., indicating that the Company has regained compliance with Listing Rule 5250(c)(1) and that the Company is therefore in compliance with the Nasdaq Global Market's listing requirements. As noted in the Hearing Panel's May 20, 2026 compliance determination, the Company remains under a Mandatory Panel Monitor pursuant to Listing Rule 5815(d)(4)(B) until May 20, 2027. The Company filed its annual report on Form 20-F for the year ended December 31, 2025 on June 5, 2026. The Notification Letter also stated that the hearing before the Hearings Panel, applied for by the Company, had accordingly been canceled. About SINOVAC Sinovac Biotech Ltd. (SINOVAC) is a China-based global biopharmaceutical company, with a mission
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom