CA-BINARLY
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Deciphera Announces Oral Presentation of Positive Topline Results from Phase 2a Study of Sapablursen in Polycythemia Vera at the 67th American Society of Hematology (ASH) Annual Meeting6.12.2025 15:30:00 CET | Press release
Results from Phase 2a IMPRSSION study demonstrate sapablursen significantly reduced phlebotomy rate, controlled hematocrit and increased serum hepcidin Sapablursen was generally safe and well tolerated Results support further development of sapablursen in a Phase 3 study Deciphera Pharmaceuticals, a member of Ono Pharmaceutical Co., Ltd. (Headquarters: Osaka, Japan; President and COO: Toichi Takino; “Ono”), today announced the oral presentation of positive results from the Phase 2a IMPRSSION study of sapablursen in patients with polycythemia vera (PV) at the 67th American Society of Hematology (ASH) Annual Meeting, taking place December 6-9, 2025, in Orlando, FL. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251206361611/en/ The results were presented by Ionis Pharmaceuticals, who discovered and developed sapablursen and conducted the IMPRSSION study. In March 2025, Ionis and Ono entered into a license agreement in which On
Protagonist and Takeda Present Longer-Term Data at ASH 2025 Showing Rusfertide Delivers Durable Response and Hematocrit Control in Polycythemia Vera6.12.2025 15:30:00 CET | Press release
52-Week Results from the Phase 3 VERIFY Study of Rusfertide Demonstrated Sustained Hematocrit Control and Response, Defined by Absence of Phlebotomy Eligibility, with No New Safety SignalsThese Data Build on Positive 32-Week Primary Analysis from VERIFY, Which Met its Primary Efficacy Endpoint and All Four Key Secondary EndpointsPatients Crossing Over from Placebo to Rusfertide at 32 Weeks Achieved a Similar Response Rate to Those Initially Randomized to Rusfertide, with 77.9% Achieving Absence of Phlebotomy Eligibility Between Weeks 40-52Four-Year Results from the Combined REVIVE and Long-Term Extension THRIVE Study Demonstrated a 13-Fold Reduction in Annual Rate of Phlebotomies from Baseline Protagonist Therapeutics, Inc. (“Protagonist”) (NASDAQ:PTGX) and Takeda (TSE:4502/NYSE:TAK) announce that new 52-week results from the pivotal Phase 3 VERIFY study evaluating rusfertide in patients with polycythemia vera (PV) will be presented in an oral presentation at the 67th American Society
Vertex Presents New Data on CASGEVY®, Including First-Ever Data in Children Ages 5-11 Years, at the American Society of Hematology Annual Meeting and Announces Plan for Global Regulatory Submissions6.12.2025 13:01:00 CET | Press release
- Data from pivotal studies of CASGEVY in children ages 5-11 years with severe sickle cell disease or transfusion-dependent beta thalassemia demonstrates the transformative potential of the therapy in younger patients -- Efficacy and safety data in children 5-11 years are consistent with the durable and positive benefit/risk profile established from clinical studies in patients 12 years of age and older -- Vertex expects to initiate global regulatory submissions for CASGEVY in children 5-11 years in 1H 2026 - Vertex Pharmaceuticals Incorporated (Nasdaq: VRTX) today announced data from multiple studies demonstrating the clinical benefits of CASGEVY® (exagamglogene autotemcel) in people ages 5 years and older living with severe sickle cell disease (SCD) or transfusion-dependent beta thalassemia (TDT). The results, including the first presentation of clinical data from pivotal studies in children ages 5-11 years, and longer-term data from the pivotal studies of people with severe SCD and
Leading Global Scientists Gather at Tengchong Scientists Forum to Explore Innovative Pathways in Frontier Technologies6.12.2025 12:31:00 CET | Press release
The 2025 Tengchong Scientists Forum opened on Saturday in southwest China’s Yunnan Province, convening leading scientists and academic figures to examine innovation across frontier fields including artificial intelligence, biodiversity and quantum technology. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251205499197/en/ Opening ceremony of Tengchong Scientists Forum on 6th December, 2025 Notable participants include Nobel Physics laureate Konstantin Novoselov, Fields Medalist Efim Zelmanov and Turing Award winner Andrew Chi-Chih Yao, who join 127 academicians, 77 university presidents from China and abroad, over 400 scholars and more than 600 entrepreneurs and financiers. The gathering aims to deepen collaboration between cutting-edge research and industrial development. Under the theme “Science · AI changing the World,” the forum features ten sub-forums, academic sessions and thematic events supporting major cooperation p
Lattice Wins 2025 Global Semiconductor Alliance Award6.12.2025 00:49:00 CET | Press release
‒ Named Most Respected Public Semiconductor Company Achieving $100 Million to $500 Million in Annual Sales ‒ Lattice Semiconductor (NASDAQ: LSCC), the low power programmable leader, today announced that it was selected as ‘Most Respected Public Semiconductor Company’ at the 2025 Global Semiconductor Alliance (GSA) Awards. The GSA awards recognize companies that have demonstrated excellence through their success, vision, strategy, and future opportunities in the industry as determined by votes from GSA members. “We are honored to be recognized by the Global Semiconductor Alliance and our peers as one of 2025’s most respected public semiconductor companies. This recognition reflects the dedication of the Lattice team and the trust of our customers, partners, suppliers, and investors. Looking ahead, we remain laser-focused on driving innovation and strengthening our role as the trusted low power programmable leader for semiconductor and system solutions,” said Ford Tamer, Chief Executive
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom