CA-BINARLY
1.4.2024 22:40:34 CEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
SLB Announces Date for Second-Quarter 2026 Results Conference Call26.5.2026 19:00:00 CEST | Press release
SLB (NYSE: SLB) will hold a conference call on July 24, 2026, to discuss the results for the second quarter ending June 30, 2026. The conference call is scheduled to begin at 9:30 a.m. U.S. Eastern time and a press release regarding the results will be issued at 7:00 a.m. U.S. Eastern time. To access the conference call, listeners should contact the Conference Call Operator at +1 (800) 715-9871 within North America or +1 (646) 307-1963 outside of North America approximately 10 minutes prior to the start of the call and the access code is 3440360. A webcast of the conference call will be broadcast simultaneously at https://events.q4inc.com/attendee/157027565 on a listen-only basis. Listeners should log in 15 minutes prior to the start of the call to test their browsers and register for the webcast. Following the end of the conference call, a replay will be available at www.slb.com/irwebcast until July 31, 2026, and can be accessed by dialing +1 (800) 770-2030 within North America or +1
Alipay Launches Next-Generation AI Payment Infrastructure, Debuts AI Wallet and Token Pay to Power Agentic Economy26.5.2026 17:20:00 CEST | Press release
Alipay today introduced its full-stack AI payment solution to partners across industries, ranging from AI companies to traditional retailers, and debuted two new services — the world’s first AI Wallet and Token Pay — to support the agentic economy’s rapid growth. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260526337824/en/ Alipay Unveils Next-generation AI Payment Infrastructure This launch extends Alipay's next-generation AI payment infrastructure, building on its consumer-facing product Alipay AI Pay and its business-facing AI payment processing product. “While the essence of commerce remains unchanged in the age of AI, the emergence of AI agents is reshaping everything. Drawing on 22 years of technological expertise and commercial know-how, Alipay is building a new generation of AI payment services to accelerate the growth of the agentic commerce ecosystem,” said Cyril Han, CEO of Ant Group. AI Wallet: Giving Users Vis
Daiichi Sankyo Europe Reaffirms Commitment to Patient-Centred Care with Extensive Data Showcase at EAS Congress 202626.5.2026 17:00:00 CEST | Press release
Presentations at the 94th European Atherosclerosis Society (EAS) Congress highlight the breadth of evidence for bempedoic acid across a wide range of patient subgroups and background therapies. Real-world data from the MILOS study across multiple European cohorts demonstrate consistent effectiveness and safety profile in routine clinical practice.1,2,3,4 Analysis from the CLEAR Outcomes trial underscores the impact of bempedoic acid on cardiovascular risks, including stroke and venous thromboembolism (VTE).5,6 Daiichi Sankyo Europe’s commitment to "care for every heartbeat" is centred on providing accessible oral treatment options to ensure every patient is given a chance to reach their LDL-C goals. Daiichi Sankyo Europe (DSE) is pleased to announce its extensive scientific presence at the European Atherosclerosis Society (EAS) Congress 2026. The presentation of 15 abstracts, comprising both clinical trial analyses and real-world evidence, underscores the company's sustained investment
OpenRouter Raises $113 Million CapitalG-led Series B as Weekly Volume Explodes to 25T Tokens26.5.2026 15:15:00 CEST | Press release
NVentures, ServiceNow Ventures, MongoDB Ventures, Snowflake Ventures, Databricks Ventures join CapitalG, a16z, Menlo Ventures, and others in backing the high-growth AI infrastructure startup OpenRouter, the AI model exchange, today announced a $113 million Series B led by Alphabet’s independent growth fund, CapitalG, with participation from investors including NVentures (NVIDIA’s venture capital arm), ServiceNow Ventures, MongoDB Ventures, Snowflake Ventures, Databricks Ventures, alongside existing investors including Andreessen Horowitz and Menlo Ventures. OpenRouter’s volume has surged to 25 trillion tokens per week (100 trillion tokens per month), representing a 5X increase from the 5 trillion tokens processed per week just six months ago. The explosion in token demand illustrates how quickly enterprises are deploying agents and scaling AI across multiple models and providers. OpenRouter’s infrastructure manages and optimizes inference and provides access to 400+ models across leadi
Xsolla Expands Its Community Management Tools for Creators, Community Leaders, and Resellers26.5.2026 15:00:00 CEST | Press release
Xsolla Adds New Features For Creators, Community Leader Experience, And Distinct Channels For Emerging Markets Xsolla, a leading global video game commerce company, today announced three simultaneous expansions of its community management tools and products. As the creator economy continues to reshape how games are discovered and the industry accelerates its shift toward direct-to-consumer commerce, Xsolla is building on its community management tools for creators, community leaders, and emerging markets, and will showcase them at TwitchCon Rotterdam later this month. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260526596720/en/ Graphic: Xsolla The games industry has never had a shortage of people who drive player acquisition, loyalty, and commerce; it's had a shortage of infrastructure that recognizes them. Creators stream it. Community leaders build a culture around it. Local resellers get it into the hands of players in
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom