CA-BINARLY
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
PUMA Relaunches Company Magazine CATch UP to Showcase the Best of the Brand12.11.2025 10:00:00 CET | Press release
Sports company PUMA has relaunched its online company magazine CATch UP to provide journalists, investors, retailers, athletes and sports enthusiasts with a window into the world of PUMA and insights into the company’s new strategic priorities, as the brand starts its transformation journey. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251112815459/en/ Sports company PUMA has relaunched its online company magazine CATch UP to provide journalists, investors, retailers, athletes and sports enthusiasts with a window into the world of PUMA and insights into the company’s new strategic priorities, as the brand starts its transformation journey. The online magazine, which is available on puma-catchup.com, has received a thorough visual makeover and will focus on the stories that highlight the company’s innovations, sports, history, corporate culture and the strategic priorities that are being implemented to establish PUMA as a T
CWAN Report: Insurance Industry’s $2.7 Trillion Shift to Alternative Investments Creates Technology Gap12.11.2025 10:00:00 CET | Press release
CWAN Analysis of 400 Insurers Shows Some Insurers Now Allocate 40-50% in ‘Alternatives’ Clearwater Analytics (NYSE: CWAN), the most comprehensive technology platform for investment management, today released industry research revealing that alternative investments have fundamentally transformed from a fringe strategy to a portfolio cornerstone, now comprising nearly one-third of the US insurance industry’s assets – representing approximately $2.7 trillion – as insurers abandon traditional portfolio strategies. Similar structural shifts are also emerging across the UK and continental Europe as insurers pursue diversification, yield and liability-matching under Solvency II and evolving capital rules. The report, “Are ‘Alternatives’ Still Alternative?”, combines industry-wide NAIC data with analysis of approximately 400 CWAN insurers representing $4.4 trillion in combined assets, including UK and European insurers on the CWAN platform, providing granular insight into alternative investmen
INNIO to Power UK Grid Stability with Landmark Project Near London12.11.2025 09:00:00 CET | Press release
One of the world’s largest high-speed gas engine power plants will provide 450 MW of scalable power Power plant to support grid stability in Southeast England, powering up to 1 million homes near London INNIO Group and Clarke Energy are helping to deliver one of the world’s largest high-speed gas engine peaking power plants in Thurrock, England. The two companies already signed a contract to this effect in 2024. The 450-MW flexible generation facility is being constructed by Statera Energy, a leading developer, owner, and operator of flexible energy assets. With full operations targeted for late 2026, it is expected to provide enough power for up to 1 million homes in Southeast England—helping to support the UK’s energy resilience strategy. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251112767813/en/ Thurrock Flexible Generation Project (c) Statera Energy As the UK transitions to renewables, grid stability is more critica
Visa Direct Stablecoin Payouts Pilot Speeds Up Access to Funds for Creators & Gig Workers12.11.2025 09:00:00 CET | Press release
New Visa Direct pilot sends USD-backed stablecoin payouts directly to stablecoin wallets, giving creators and gig workers faster access to their funds. At Web Summit today, Visa Inc. (V) announced a breakthrough pilot allowing businesses and platforms to send payouts directly to recipients’ stablecoin wallets. For businesses using Visa Direct, payouts can be funded in fiat currency, while recipients can choose to receive their funds in USD-backed stablecoins like USDC, transforming the speed and accessibility of global payouts. This innovation expands the reach of Visa Direct by providing creators, freelancers, and marketplaces with a stable store of value and faster access to funds - even in markets facing currency volatility or limited banking infrastructure. “Launching stablecoin payouts is about enabling truly universal access to money in minutes - not days - for anyone, anywhere in the world,” said Chris Newkirk, President, Commercial & Money Movement Solutions, Visa. “Whether it’
Ant International Launches World’s First Iris Authentication Feature in Smart-glasses Payment Solution12.11.2025 08:48:00 CET | Press release
Alipay+ GlassPay, Ant International’s smart glasses-embedded payment solution, will add iris authentication to its security verification capabilities, alongside voiceprint authentication The enhanced solution improves consumer checkout experience and merchant payment success rate, and opens a new channel for personalised customer interaction Ant International continues to push the frontiers of payment technology, adding to recent developments including AI-powered agentic payments and NFC-based integration of QR and card payments In a global first, Ant International, a leading global digital payment, digitisation, and financial technology provider, has added iris authentication features to Alipay+ GlassPay, its AR glasses-embedded payment solution, through partnerships with leading smart glasses producers. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20251111892620/en/ The enhanced solution improves consumer checkout experien
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom