Binarly Releases Free Detection Tool for XZ Backdoor
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
Contact information
media@binarly.io
818.351.9637
About Business Wire
For more than 50 years, Business Wire has been the global leader in press release distribution and regulatory disclosure.
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Hanshow and the University of Cambridge Launch Joint Research on Augmented Intelligent Hybrid Wireless Technology25.12.2025 13:34:00 EET | Press release
Hanshow, a global leader in electronic shelf labels (ESL) and digital store solutions, has entered into a multi-year research collaboration with the University of Cambridge, one of the world’s most prestigious academic institutions. The partnership will focus on joint research and innovation in next-generation intelligent hybrid wireless technologies, marking an important milestone in Hanshow’s continued investment in core technologies and long-term innovation. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251225988816/en/ This collaboration leverages the University of Cambridge’s deep expertise in fundamental wireless technology research, alongside Hanshow’s extensive industry experience, to further strengthen multi-protocol integration capabilities and expand scalable applications across diverse retail scenarios. Guided by shared principles of innovation, collaboration, openness, and knowledge sharing, the two parties aim
Social Development Bank Highlights Strategic Partnerships and Global Initiatives at DeveGo 202524.12.2025 18:27:00 EET | Press release
The Social Development Bank (SDB) hosted the second edition of the Entrepreneurship and Modern Business Practices Forum, “DeveGo 2025”, from 21 to 23 December in Riyadh. Held under the patronage of His Excellency Eng. Ahmed bin Sulaiman Al Rajhi, Minister of Human Resources and Social Development and Chairman of SDB’s Board of Directors, the forum brings together government leaders, global experts, investors, and entrepreneurs to shape the future of entrepreneurship and modern business practices in the Kingdom of Saudi Arabia. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251224036724/en/ From right to left: Ahmed Al Rajhi, Saudi's Minister of Human Resources and Social Development, H.E. Rebeca Grynspan, Secretary-General of UNCTAD, and Sultan Al Hamidi, CEO of Social Development (Photo: AETOSWire) Opening the forum, Minister Al Rajhi delivered a keynote speech on the growing vibrancy of Saudi Arabia’s entrepreneurial movem
Making Science Unveils ‘AWAKE’: The AI Venture Studio Industrialising Startup Creation and AI-First Innovative Solutions23.12.2025 21:51:00 EET | Press release
Making Science, the global digital acceleration consultancy, today announced the launch of AWAKE Venture Studio. This "AI-first" model represents a new era in systematic innovation, designed to identify, prototype, and scale both internal proprietary solutions and independent AI-native startups with global reach. The launch of AWAKE is motivated by the significant efficiency gains of orders of magnitude that Making Science has already achieved through the internal integration of AI. By applying these methods, the firm has achieved a 2x acceleration in tech feature development reducing time in the deployment of AI Agents. This model has already proven its commercial and innovative power through the acceleration of startups like ad-machina, which has multiplied its value by 10 since joining the Making Science ecosystem. These proven benchmarks serve as the technical foundation for AWAKE’s two interconnected engines, which formalise this efficiency into a repeatable manufacturing process
FDA Clears First Extended Depth of Focus Contact Lens for Presbyopia23.12.2025 19:07:00 EET | Press release
The Cataltheia Group and its U.S. subsidiary, Bruno Vision Care LLC, a leader in eye health innovation, today announced that the U.S. Food and Drug Administration (FDA) has cleared the first and only Daily Disposable Soft (Hydrophilic) Contact Lens for Presbyopia utilizing patented Extended Depth of Focus (EDOF) optical design technology, enabling commercial distribution in the United States. Deseyne® delivers smooth, continuous focus across near, intermediate, and distance vision, providing clear, natural vision without compromise. This performance is enabled by Cataltheia’s patented hyper-refractive central zone, engineered to precisely redirect light in a controlled manner. The result is a clear clinical advantage over the only other available contact lens option for presbyopia, multifocal lenses, which rely on multiple optical zones and often require prolonged visual and cognitive adaptation. “We are proud to offer the first contact lens solution for the world’s aging population th
Aramco Awards SLB Long-Term Contract to Support Kingdom’s Unconventional Gas Production Growth23.12.2025 15:58:00 EET | Press release
Global technology company SLB (NYSE: SLB) has been awarded a five-year contract by Aramco to provide stimulation services for its unconventional gas fields. This award is part of a broader multi-billion contract, supporting one of the largest unconventional gas development programs globally. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251223074948/en/ The contract encompasses advanced stimulation, well intervention, frac automation, and digital solutions, which are important to unlocking the potential of Saudi Arabia’s unconventional gas resources. The contract encompasses advanced stimulation, well intervention, frac automation, and digital solutions, which are important to unlocking the potential of Saudi Arabia’s unconventional gas resources — a cornerstone of the Kingdom’s strategy to diversify its energy portfolio and support the global energy transition. “This agreement is an important step forward in Aramco’s effor
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom