#116 - Intel Chat: XZ Utils

The Cybersecurity Defenders Podcast

Apr 4 2024 • 40 mins

In this episode of The Cybersecurity Defenders Podcast, we discuss some cutting-edge intel coming out of LimaCharlie's community Slack channel.

On March 29, 2024 defenders became aware that a backdoor was intentionally planted inside of XZ Utils an open source data compression utility available on many installations of Linux and other Unix-like operating systems. The threat actors behind this implant likely spent years on this operation and were very close to getting the backdoor merged into Debian and Redhat before it was discovered.

The original disclosure email can be found here.

A technical break down of the compromise can be found here.

A Wired article covering the compromise in-depth can be found here.

You Might Like

TED Radio Hour
TED Radio Hour
NPR
Acquired
Acquired
Ben Gilbert and David Rosenthal
Darknet Diaries
Darknet Diaries
Jack Rhysider
Hard Fork
Hard Fork
The New York Times
Marketplace Tech
Marketplace Tech
Marketplace
Kim Komando Today
Kim Komando Today
Kim Komando
All-In with Chamath, Jason, Sacks & Friedberg
All-In with Chamath, Jason, Sacks & Friedberg
All-In Podcast, LLC
This Week in Tech (Audio)
This Week in Tech (Audio)
TWiT
Daily Tech News Show
Daily Tech News Show
Tom Merritt
WSJ’s The Future of Everything
WSJ’s The Future of Everything
The Wall Street Journal
Security Now (Audio)
Security Now (Audio)
TWiT
Elon Musk Podcast
Elon Musk Podcast
Stage Zero
TechStuff
TechStuff
iHeartPodcasts
Ask The Tech Guys (Audio)
Ask The Tech Guys (Audio)
TWiT
Rich On Tech
Rich On Tech
Rich DeMuro
Endless Thread
Endless Thread
WBUR
The Artificial Intelligence Podcast
The Artificial Intelligence Podcast
Dr. Tony Hoang
The Vergecast
The Vergecast
The Verge
Lofi ~ Sleep/Chill
Lofi ~ Sleep/Chill
Lofi King
Fortnite Emotes
Fortnite Emotes
Lawrence Hopkinson