Business Wire

CA-BINARLY

1.4.2024 22:40:34 CEST | Business Wire | Press release

Share
Binarly Releases Free Detection Tool for XZ Backdoor

Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).

The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).

According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.

“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.

“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.

For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.

The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.

For more information read our research article and access the free XZ backdoor scanner at XZ.fail.

About Binarly:

Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.

To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.

View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/

About Business Wire

Business Wire
Business Wire
101 California Street, 20th Floor
CA 94111 San Francisco

http://businesswire.com
DK

Subscribe to releases from Business Wire

Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.

Latest releases from Business Wire

ACE Welcomes Telekom Srbija Group as Newest Member, Expanding Anti-Piracy Fight in Southeast Europe14.7.2026 13:21:00 CEST | Press release

Top Telecommunications and Media Group Joins Global Coalition Protecting Creative Content and Strengthening Lawful Digital Markets The Alliance for Creativity and Entertainment (ACE), the world’s leading anti-piracy coalition, today announced Telekom Srbija Group as its newest member, strengthening ACE’s content protection efforts in Southeast Europe and across the global digital media ecosystem. Telekom Srbija Group is a leading telecommunications and media group in Southeast Europe, providing connectivity, multimedia and digital services across the region. Operating across 15 markets regionally and globally, and serving more than 14 million users, the Group has established a strong and expanding international footprint. In recent years, the company has expanded beyond its core telecommunications business to become a major investor in premium television, film, sports and digital content, developing its own production and distribution capabilities and licensing its content to internati

STARTEEPO Increases Xerox Position to 8.8 Million Shares, Becomes Second-Largest Common Shareholder14.7.2026 13:00:00 CEST | Press release

STARTEEPO Invest (“STARTEEPO”), a Prague-based alternative investment fund focused on high-conviction public equity investments, today announced that it has increased its beneficial ownership position in Xerox Holdings Corporation (“Xerox” or the “Company”) to 8.8 million common shares, together with options on an additional 140,000 shares, as disclosed in an amended Schedule 13D filing with the U.S. Securities and Exchange Commission. Based on publicly available ownership disclosures, STARTEEPO is now Xerox’s second-largest holder of common stock. “We have reached the target ownership level established for the current phase of our investment strategy,” said Frantisek Bostl, Chairman of the Board of STARTEEPO Invest. STARTEEPO’s investment thesis remains centered on balance sheet improvement, disciplined capital allocation, operational execution, the successful integration of Lexmark, and what we believe is the market’s continued undervaluation of Xerox’s long-term strategic positionin

Nordic Firms Seek Green, Sovereign AI Infrastructure14.7.2026 11:00:00 CEST | Press release

Renewable power, heat reuse and local data requirements are reshaping private and hybrid cloud choices, ISG Provider Lens® report says Nordic enterprises are adopting private and hybrid cloud infrastructure that combines AI-ready capacity, local residency and low-carbon operations as high-performance workloads and geopolitical risk reshape IT strategies, according to a new research report published today by Information Services Group (ISG) (Nasdaq: III), a global AI-centered technology research and advisory firm. The 2026 ISG Provider Lens® Private/Hybrid Cloud — Data Center Services report for the Nordics finds that the region is evolving from a hosting destination into a backbone for European data processing. Enterprises are using the Nordics’ renewable energy and natural cooling to support cloud strategies that balance large scale with environmental consciousness and compliance with data sovereignty regulations. “Nordic enterprises are connecting infrastructure decisions to resilien

European Commission Approves Erbitux® (cetuximab) in Combination with Encorafenib and FOLFOX for First-Line Treatment of Metastatic Colorectal Cancer with BRAF V600E Mutation14.7.2026 11:00:00 CEST | Press release

ERBITUX in combination with encorafenib and FOLFOX is the first and only approved targeted regimen for the first-line treatment of adult patients with BRAF V600E-mutant mCRCThe approval is based on the pivotal Phase 3 BREAKWATER trial, which demonstrated statistically significant and clinically meaningful improvements in both progression-free survival (PFS) and overall survival (OS) compared to standard chemotherapy with or without bevacizumabERBITUX confirms its status as the pioneering anti-EGFR therapy in mCRC, now approved across different patient populations and multiple lines of therapyNot intended for Canada-, UK- or US-based media Merck, a leading global science and technology company, today announced that the European Commission (EC) approved an update to the Erbitux (cetuximab) EU label on June 26, 2026. Erbitux is now indicated in combination with encorafenib for patients with BRAF V600E-mutant metastatic colorectal cancer (mCRC) — both in first-line treatment in combination

Swiss Pension Funds Increase Commitments to Record Infrastructure Equity Fund to EUR 1.23 Billion14.7.2026 09:58:00 CEST | Press release

Record Asset Management GmbH (RAM), subsidiary of London-listed Record plc (Record Financial Group), today announced that its Infrastructure Equity fund has attracted EUR 160 million of additional capital from Swiss pension funds, increasing total commitments to approximately EUR 1.23 billion. Capital deployment continues to progress in line with expectations, with more than one-third of the fund’s initial capital now deployed or committed to investments. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260713541233/en/ RAM manages a dedicated infrastructure co-investment vehicle in partnership with APG, the pension asset manager of ABP, providing Swiss pension funds with access to large-scale infrastructure equity investments alongside APG’s pension fund partners. RAM is the European asset management arm of Record Financial Group, the London-listed specialist investment group managing USD 115 billion of assets on behalf of in

In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.

Visit our pressroom
World GlobeA line styled icon from Orion Icon Library.HiddenA line styled icon from Orion Icon Library.Eye