Head Topics

Malicious xz backdoor reveals fragility of open source

Nigeria News News

Malicious xz backdoor reveals fragility of open source
Nigeria Latest News,Nigeria Headlines
  • 📰 TheRegister
  • ⏱ Reading Time:
  • 50 sec. here
  • 2 min. at publisher
  • 📊 Quality Score:
  • News: 23%
  • Publisher: 61%

This time, we got lucky. It mostly affected bleeding-edge distros. But that's not a defense strategy

The discovery last week of a backdoor in a widely used open source compression library called xz could have been a security disaster had it not been caught by luck and atypical curiosity about latency from a Microsoft engineer.

What appears to happen, simply put, is that on a machine that deploys a backdoored xz, the SSH daemon ends up loading the poisoned library during startup, via systemd, which alters the operation of the daemon. That meddling injects code that inspects incoming SSH connections for a specific set of circumstances that if met executes shell commands hidden in a payload supplied by the attacker during the connection initialization, giving the spy remote code execution on the machine.

"Currently, it appears as though the backdoor is added to the SSH daemon on the vulnerable machine, enabling a remote attacker to execute arbitrary code," said the Akamai Security Intelligence Group in a"This backdoor almost became one of the most significant intrusion enablers ever — one that would’ve dwarfed the SolarWinds backdoor. The attackers were almost able to gain immediate access to any Linux machine running an infected distro, which includes Fedora, Ubuntu, and Debian.

We have summarized this news so that you can read it quickly. If you are interested in the news, you can read the full text here. Read more:

TheRegister /  🏆 67. in UK

Nigeria Latest News, Nigeria Headlines

Similar News:You can also read news stories similar to this one that we have collected from other news sources.

‘Malicious’ cyber hacks launched by China thwarted as UK announces new sanctions‘Malicious’ cyber hacks launched by China thwarted as UK announces new sanctionsChinese state-affiliated actors were responsible for two 'malicious' cyber campaigns which targeted 'both our democratic institutions and parliamentarians', Oliver Dowden has confirmed amid new sanctions on China.
Read more »

China responsible for two 'malicious' cyber attack campaigns in UK, says DowdenChina responsible for two 'malicious' cyber attack campaigns in UK, says DowdenThe deputy prime minister Oliver Dowden blames 'state-affiliated actors' for the incidents targeting the Electoral Commission and individual MPs.
Read more »

Politics live: China blamed for 'malicious' campaigns against UK - with 'clear pattern of hostile activity'Politics live: China blamed for 'malicious' campaigns against UK - with 'clear pattern of hostile activity'The deputy prime minister has given a statement on Chinese-linked cyber attacks against targets in the UK. Meanwhile, Rishi Sunak is facing another by-election after MP Scott Benton announced he was stepping down with immediate effect.
Read more »

Sunak under mounting pressure over ‘feeble’ response to China after two ‘malicious’ cyber hacksSunak under mounting pressure over ‘feeble’ response to China after two ‘malicious’ cyber hacksRishi Sunak is under growing pressure to adopt a tougher stance on China following two 'malicious' cyber campaigns in the UK.
Read more »

UK and US accuse China of ‘malicious’ global cyber attacksUK and US accuse China of ‘malicious’ global cyber attacksOfficials in Britain and the US on Monday filed charges and imposed sanctions on alleged spies linked to the APT31 hacking group.
Read more »

UK and US accuse China of ‘malicious’ global cyber attacksOfficials in Britain and the US on Monday filed charges and imposed sanctions on alleged spies linked to the APT31 hacking group.
Read more »



Render Time: 2025-08-28 17:11:02