2024-04-02 20:15:48 UTC
Microsoft developer Andres Freund recently discovered a highly sophisticated backdoor in the xz-utils compression library, raising concerns about cybersecurity threats. The backdoor, included through social engineering tactics, was well hidden and targeted Linux distributions. Bojan Zdrnja from SANS Internet Storm Center will discuss the implications and techniques used in a upcoming episode of Wait Just an Infosec. Learn more about the vulnerability here: https://isc.sans.edu/diary/The%20amazingly%20scary%20xz%20sshd%20backdoor/30802.