CA-BINARLY
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Meiji Seika Pharma Partners With MBC BioLabs to Strengthen Global Innovation in Drug Discovery19.12.2025 02:00:00 CET | Press release
Meiji Seika Pharma Co., Ltd. (Headquarters: Chuo-ku, Tokyo; President & CEO: Toshiaki Nagasato) today announced that it has entered into a partnership agreement with MBC BioLabs which is a private organization supporting the development of biotech startup companies in California’s San Francisco Bay Area. MBC BioLabs provides fully equipped research facilities and a supportive community that help biotech entrepreneurs accelerate from concept to company. By removing the burden of building and maintaining laboratory infrastructure, resident companies can focus early on research and development while efficiently advancing commercialization. Through this partnership, Meiji Seika Pharma will further advance its open-innovation initiatives and strengthen research and development in its priority therapeutic areas: infectious diseases, hematologic diseases, and immune-inflammatory diseases. By engaging with the entrepreneurs and startup community at MBC BioLabs, the company aims to discover inn
Enry's Island SpA Strengthens Its Leadership in Venture Capital with Explosive Growth and Redesigns the Future of VC Through Gaming19.12.2025 00:34:00 CET | Press release
Announcement of Enry’s Island AdVentures: the world’s first video game to learn how to launch and scale startups, focused on democratizing innovation for “Long Tail Users” Enry’s Island SpA (WBAG:EIOS), the world’s first publicly listed venture builder, announces a new era of growth, innovation, and the democratization of Venture Capital (VC). The company has delivered exceptional results, consolidating its position as an industry leader through a strategic positioning in the rapidly expanding gaming market. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251218742236/en/ Record Growth and Performance Enry’s Island SpA has demonstrated an extraordinary growth trajectory and a strong financial and operational track record: Revenues: +250% year-over-year (YoY). Exit: $3.6M in exits realized via IPO. Portfolio: 1 IPO of a portfolio company completed in December 2024, with an additional 2 IPOs expected in 2026. The performance of
500 Global Expands Africa Presence; Selected to Advance Digital Morocco 2030 Strategy18.12.2025 21:37:00 CET | Press release
Part of the Digital Morocco 2030 strategy, 500 Global has been selected to support the Startup Venture Building (Startup VB) initiative. 500 Global, one of the world’s most active venture capital firms1, announced it has been selected to support the Ministry-led Startup VB initiative, a flagship program under the Digital Morocco 2030 strategy2. This announcement marks a significant milestone in 500 Global’s continued expansion across the African continent and its work collaborating with governments to strengthen national innovation ecosystems. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251218363323/en/ Announcement of 500 Global's continued expansion across Africa and support of Digital Morocco 2030 Launched by the Ministry of Digital Transition and Administrative Reform (Ministry) and deployed by TAMWILCOM, the Startup VB initiative is a flagship program under the Digital Morocco 2030 strategy. Startup VB aims to streng
Neural Concept Closes $100M Funding Round Led by Growth Equity at Goldman Sachs Alternatives to Scale AI-Native Engineering18.12.2025 17:00:00 CET | Press release
New capital accelerates Neural Concept’s ability to deliver transformative technologies and enterprise-wide AI impact across advanced industrial workflows.Platform delivers CAD-native, physics-aware AI and deep reasoning for engineering, saving customers $50 million annually, reducing late-stage redesigns by 30-50% and accelerating time to market by up to two years.The company has generated a fourfold increase in enterprise revenue over the past 18 months.More than 50 global companies are actively relying on the platform, including General Motors, General Electric Vernova, Leonardo Aerospace, Eaton, Safran, Renault Group and multiple Formula 1 teams. Neural Concept, a global AI platform and leader in Engineering Intelligence powering next-generation product development, today announced it raised a $100 million Series C funding round led by Growth Equity at Goldman Sachs Alternatives, with existing investors Forestay Capital, Alven, HTGF, D.E. Shaw Ventures and Aster Capital. This press
Croma-Pharma Introduces New Medical Device for the Preparation of Autologous PRP | Fluid- PRF18.12.2025 16:57:00 CET | Press release
Croma-Pharma, a global player in minimally invasive aesthetic medicine, proudly announces the launch of its new medical device that is used for the preparation of autologous Platelet-Rich Plasma (PRP) | Fluid-Platelet-Rich Fibrin (Fluid-PRF).1 This launch represents continued progress in Croma’s mission to provide healthcare professionals state-of-the-art tools for their practice. With its innovative design and optimized separation technology, Exprecell™ enables the efficient preparation of autologous blood concentrates, without the use of anticoagulants, resulting in the formation of Fluid-PRF, a biologically active concentrate that retains the regenerative properties of platelets and leukocytes, yet stays liquid for a defined period.1 What makes Exprecell™ special?MDR certification: Exprecell™ is MDR-certified, meeting stringent EU regulatory requirements to ensure the safe, controlled and standardized preparation of autologous Platelet-Rich Plasma (PRP) | Fluid-Platelet-Rich Fibrin
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom