CA-BINARLY
1.4.2024 22:40:34 CEST | Business Wire | Press release
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Galderma Shareholders Approve All Annual General Meeting Proposals22.4.2026 17:45:00 CEST | Press release
Galderma Group AG (SIX:GALD), the pure-play dermatology category leader, announced that shareholders approved all proposals put forward by the Board of Directors at its Annual General Meeting (AGM), held earlier today via live webcast. This includes the payment of a gross dividend of 0.35 CHF per dividend-bearing share1, to be distributed out of reserves from capital contributions. Shareholders approved the election of Harry Kirsch as independent member of the Board of Directors, as well as the election of Samuel du Retail and Delphine Viguier-Hovasse, representatives of L’Oréal, as non-independent members of the Board. In addition, Thomas Ebeling (Chair), Daniel Browne, Maria Teresa Hilado, Karen Lee Ling, Roberto Marques, Sherilyn McCoy and Dr. Flemming Ørnskov were re-elected to the Board. The AGM also approved the company’s 2025 Annual Financial Statements, Non-Financial Report and Compensation Report. Detailed voting results and the official minutes will be published on Galderma's
Altrove and Bloomineral Named Winners of the 2026 Grand Prix ACF AutoTech22.4.2026 15:21:00 CEST | Press release
IoT.Bzh receives the inaugural Industrialization Prize at the 9th edition of the international automotive startup competition Altrove and Bloomineral have been crowned winners of the 2026 Grand Prix ACF AutoTech, the international startup competition recognizing the best of automotive innovation. The ninth edition was held on Wednesday, April 15 at the Automobile Club de France in Paris, where IoT.Bzh also received the first-ever Industrialization Prize. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260422236542/en/ Picture of the end of the event with the winners : Bloomineral, Altrove and Iot.Bzh + all the Jury Members from French Automotive OEM and Tier1 Hosted by competition founder Richard de Cabrol and Simon Degiovanni, the evening gathered more than 250 leaders from the automotive, technology, digital, business and media sectors, with attendees joining both on-site and online. Six finalist startups, selected from mor
I/ONX Shatters the Host Tax: New Symphony SixtyFour Architecture Delivers 50% TCO Savings Across AI Inference and Fine-Tuning Lifecycle22.4.2026 15:00:00 CEST | Press release
Eliminating infrastructure overhead of legacy designs, I/ONX debuts a scaled AI inference and fine-tuning stack that cuts power by up to 30kW per rack and reduces cost of rack-scale deployments by up to 70% I/ONX High Performance Compute (HPC), a leading provider of heterogeneous AI systems, today announced the global launch of the Symphony SixtyFour, a high-density platform designed to collapse the physical and economic footprint of AI inference and fine-tuning infrastructure. By supporting up to 64 accelerators on a single node, I/ONX eliminates the redundant Host Tax—the massive overhead in power, hardware, and licensing that negatively impacts ROI in enterprise AI. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260422485327/en/ I/ONX Introduces Symphony SixtyFour: The Host Tax is Over. Save 30-50% on your AI Infrastructure Costs. While inference now accounts for 90% of enterprise AI workloads, enterprises are entirely li
Thales Introduces Imperva for Google Cloud, Bringing Its Enterprise-Grade Application Security Capabilities Directly into Google Cloud22.4.2026 15:00:00 CEST | Press release
New offering eliminates the need to choose between cloud-native performance and advanced security as enterprises scale modern applications Thales today announced the Controlled Availability of Imperva for Google Cloud, bringing the industry's most trusted application security platform directly into Google Cloud. Designed to operate within Google Cloud, the new offering enables organizations to protect web applications and APIs by leveraging Google Cloud’s Service Extension traffic, preserving existing pipelines, integrations, and monitoring workflows. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260422746638/en/ ©Thales As enterprises accelerate cloud adoption, development teams increasingly standardize on native cloud services to improve speed and reduce operational complexity. Many security solutions, however, require external routing that introduces latency and friction. At the same time, native cloud security tools oft
ClickHouse Expands Strategic Collaboration with Google Cloud, Bringing Deeper Integration, Cloud Flexibility, and Next-Generation Performance22.4.2026 15:00:00 CEST | Press release
ClickHouse, a leader in real-time analytics, data warehousing, observability, and AI/ML, today at Google Next 26 announced a significant expansion of its strategic collaboration with Google Cloud. The announcement encompasses four major milestones: native integration with Google Cloud Lakehouse, the availability of ClickHouse's Bring Your Own Cloud (BYOC), the migration of ClickHouse Cloud on Google Cloud to Google's custom Arm-based Axion processors, and a new integration between the ClickHouse MCP server and Google Antigravity. These advancements deliver deeper interoperability across the data ecosystem, extend deployment flexibility for security-conscious enterprises, and unlock meaningful gains in query performance and cost efficiency for joint customers worldwide. This expansion builds on ClickHouse's growing presence within the Google Cloud ecosystem, where thousands of data-intensive organizations rely on ClickHouse Cloud to power real-time observability, business intelligence,
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom