Infosecurity-magazine.com

Trusted Contributor Plants Sophisticated Backdoor in Critical Open-Source Library

A Microsoft developer has found a backdoor in a software package of a compression library widely used in Linux systems that could have resulted in a massive software supply chain attack. The author of ...
Ars Technica

Backdoor found in widely used Linux utility targets encrypted SSH connections

Researchers have found a malicious backdoor in a compression tool that made its way into widely used Linux distributions, including those from Red Hat and Debian. Because the backdoor was discovered ...
CSOonline

Dangerous XZ Utils backdoor was the result of years-long supply chain compromise effort

Caught before it could do widespread damage, the sophisticated vulnerability could have been one of the highest-impact software supply chain breaches to date. A data compression library called XZ ...