CA-BINARLY
Binarly, provider of an industry leading AI-powered firmware and software supply chain security platform, has created and released a free scanning tool to help defenders spot signs of the dangerous XZ backdoor (CVE-2024-3094).
The XZ.fail detection tool was released less than 24 hours after the discovery of a backdoor in the open-source XZ Utils, which provides lossless data compression on virtually all Unix-like operating systems, including Linux. (See CISA advisory).
According to Binarly chief executive Alex Matrosov, the tool includes generic IFUNC implantation detection with close to zero false-positives, showcasing the company’s binary code intelligence engine in action.
“This detection is based on behavioral analysis and can detect any invariants automatically if a similar backdoor is implanted somewhere else,” Matrosov added.
“Such a complex and professionally designed implantation framework is not developed for a one-shot operation. It could already be deployed elsewhere or partially reused in other operations. That’s exactly why we started focusing on more generic detection for this complex backdoor,” Matrosov added.
For those seeking more comprehensive detection and remediation strategies, the Binarly Transparency Platform offers an in-depth solution. With XZ detection capabilities deployed, the platform facilitates easy identification of malicious activities at scale, enabling users to take prompt and effective action to safeguard their software supply chains.
The XZ backdoor came to light on March 29, 2024, when a thread was published on Openwall's oss-security mailing list by Andres Freund, revealing a potential compromise in the open-source code.
For more information read our research article and access the free XZ backdoor scanner at XZ.fail.
About Binarly:
Binarly is a global firmware and software supply chain security company founded in 2021. The company’s flagship Binarly Transparency Platform is an enterprise-class, AI-powered solution used by device manufacturers, OEMs, IBVs and product security teams to identify known and unknown vulnerabilities, misconfigurations and signs of malicious code implantation. Binarly’s validated remediation playbooks have significantly reduced the cost and time to respond to security exposures. Based in Los Angeles, California, Binarly brings decades of research and program analysis expertise to build solutions to protect businesses, critical infrastructure, and consumers around the world.
To view this piece of content from cts.businesswire.com, please give your consent at the top of this page.
View source version on businesswire.com: https://www.businesswire.com/news/home/20240401230046/en/
About Business Wire
Subscribe to releases from Business Wire
Subscribe to all the latest releases from Business Wire by registering your e-mail address below. You can unsubscribe at any time.
Latest releases from Business Wire
Agendia Announces NCCN Guideline Update Recognizing MammaPrint to Guide Personalized Anthracycline Use in HR+/HER2- Early‑Stage Breast Cancer20.1.2026 13:00:00 CET | Press release
Update based on real-world evidence from the FLEX Study presented at the 2025 San Antonio Breast Cancer Symposium Agendia, Inc., a leader in precision oncology for breast cancer, today announced that the updated NCCN Clinical Practice Guidelines in Oncology1 (NCCN Guidelines®) now recognize that MammaPrint® + BluePrint® can help identify a subset of hormone receptor positive, HER2-negative (HR+/HER2–) early-stage breast cancer (EBC) patients most likely to benefit from anthracycline-based chemotherapy. “I am delighted that oncologists finally have a way to identify HR+/HER2- early breast cancer patients who will benefit from anthracycline therapy," said Joyce A. O’Shaughnessy, M.D., principal investigator for the FLEX Study. “I think the biologic rationale and the data underpinning the observation that High Risk 2 Luminal (by BluePrint) breast cancer patients benefit from anthracycline therapy are quite strong.” The updated NCCN Guidelines are based on a three-year analysis of outcomes
Cargill Wins 2026 BIG Innovation Award20.1.2026 13:00:00 CET | Press release
The company was honored as a Top Innovator for large-scale AI-and-data-driven innovation advancing food security, operational excellence and resilient food systems Cargill today announced it has been named a winner in the 2026 BIG Innovation Awards by the Business Intelligence Group and designated as a Top 10 Innovator, recognizing the company’s disciplined approach to innovation across the global food and agriculture system. Cargill was honored in the Innovative Organizations category, alongside a cohort of 159 companies, products and leaders that are transforming industries through applied innovation and measurable real-world impact. This press release features multimedia. View the full release here: https://www.businesswire.com/news/home/20260120109897/en/ Cargill has been named a winner in the 2026 BIG Innovation Awards by the Business Intelligence Group and designated as a Top 10 Innovator, recognizing the company’s disciplined approach to innovation across the global food and agr
Armis Helps Italian Grocery Retailer Multicedi Strengthen Cyber Resilience20.1.2026 13:00:00 CET | Press release
Armis Centrix™ identified that 10-15% of connected assets across the organization’s network were previously unaccounted for, introducing cyber risk Armis, the cyber exposure management & security company, today announced that Multicedi, one of the leading grocery retail groups in Central and Southern Italy, is using Armis Centrix™, Armis’ Cyber Exposure Management Platform, to strengthen its cybersecurity posture. “Before introducing Armis, critical issues were addressed only when malfunctions or abnormal events had already occurred,” said Livio De Prisco, Director of Information Systems at Multicedi. “With Armis Centrix™, the approach has completely changed: rather than responding reactively, the company now has a real-time view of its entire device fleet and can manage it proactively. We can detect devices that have been added to the network, prioritize risks based on their criticality, and define action plans and budgets consistent with our operational and regulatory requirements.”
TreviPay Launches Pay by Invoice for Issuers Enabled by Visa Credentials20.1.2026 13:00:00 CET | Press release
TreviPay’s Pay by Invoice solution enables Visa issuers and their business buyers to use Visa credentials for supplier payments to unlock new B2B opportunities TreviPay announces the launch of its Pay by Invoice solution for Visa-issuing banks, enabling issuers to capture a greater share of the $58 trillion North American B2B payments market. Through this collaboration with Visa, a world leader in digital payments, TreviPay’s order-to-cash automation technology combines with Visa’s commercial payment capabilities to help issuers move fragmented B2B spend into strategic, issuer-financed, invoice-based transactions. A Murphy Research study, found 26% of corporate payments are still made with checks or rely on manual legacy ACH processes. The study also shows 78% of global B2B buyers need customization or control in their payments and invoicing workflows, with 61% preferring to pay on net terms. Pay by Invoice helps banks meet these expectations by providing suppliers with early payment (
Philip Morris International Opens Dialogue on the Future of Human Cognition as a Defining Frontier in the Age of AI20.1.2026 11:03:00 CET | Press release
The paper calls for global debate to ensure AI enhances—rather than diminishes—uniquely human strengths in an increasingly automated world Philip Morris International Inc. (NYSE: PM) today released a new white paper, “Human Cognition: The Next Frontier?”, inviting leaders across business, policy, and academia to join a global conversation on the evolving role of human cognition as artificial intelligence transforms work, society, and the economy. The white paper explores how human capabilities such as - critical thinking, creativity and adaptability - are poised to become the “superskill” of the future, driving progress in an era of human-machine collaboration. As AI automates routine tasks and augments knowledge work, PMI argues that nurturing and protecting cognitive capacity will be essential for organizations seeking to remain resilient and relevant. Where once technology often automated labor-intensive jobs in the quest to improve productivity, now, as intelligent systems take on
In our pressroom you can read all our latest releases, find our press contacts, images, documents and other relevant information about us.
Visit our pressroom