DeepNewz, mobile.

People-sourced. AI-powered. Unbiased News.

Screenshot of DeepNewz app showing story detail view.

Screenshot of DeepNewz app showing story list view.

Search

For You

Sources

Loading...

Additional media

Loading...

Similar Stories

Footer

AI

AI Fundraising
AI Modeling
AI Products

Business

Automobile
Company Earnings
Economics
Law
Prediction Markets
Real Estate
Rumors
Stocks
VC

Crypto

Airdrops
Blockchains
CBDCs
DeFi
Hacks
Markets
Memecoin
Mining
NFT
Regulation

Culture

Anime
Celebrities
Crime
Education
Movies
Music
Obituary
TV
Video Games

Environment

Climate
Energy
Natural Disasters
Natural Resources
Sustainability

Politics

DOGE
Epstein Files
Executive Orders
Tariffs
US Domestic Policy
US Elections
US Foreign Policy
US Gov Appointments
US Judiciary
US Legislation
War

Science

Archeology
Bio
Health
Math
Pharma
Physics
Space

Sports

Boxing
Chess
Cricket
Golf
Hockey
MLB
NBA
NCAA
NFL
Olympics
PGA
Poker
Racing
Rugby
Soccer
Tennis
UFC

Tech

AR-VR
Fintech
Infosec
IoT
Metaverse
Policy
Robotics
Smart Home
Software
Startups
Wearables

United States

Arizona
Boston
California
Chicago
Colorado
Detroit
Florida
Georgia
Las Vegas
Los Angeles
New Jersey
New Mexico
New York
Ohio
Oregon
Philadelphia
San Francisco
Seattle
Texas
Utah
Washington DC

World

Terms of Service

WhatsApp YouTube X

© 2026 DeepNFTValue, Inc. All rights reserved.

Mar 30, 01:49 PM

Malicious open source developer attempts xz backdoor, Microsoft engineer detects threat in Linux systems

Malicious open source developer attempts xz backdoor, Microsoft engineer detects threat in Linux systems

Authors

11

A malicious open source developer attempted to insert a backdoor into the xz compression library, posing a serious security threat to Linux systems. The attack was discovered by a vigilant software engineer at Microsoft who noticed a suspicious lag in system performance. The incident highlights the risks associated with maintaining widely used software by a single individual and raises concerns about the security of other projects. The attacker's sophisticated tactics, including pressuring the original maintainer and inserting their own RSA key, underscore the need for heightened vigilance in the open-source community.

#Linux #Microsoft

Written with ChatGPT (GPT-3).

Image #1 for story malicious-open-source-developer-attempts-xz-backdoor-detects

Image #2 for story malicious-open-source-developer-attempts-xz-backdoor-detects

Image #3 for story malicious-open-source-developer-attempts-xz-backdoor-detects

Image #4 for story malicious-open-source-developer-attempts-xz-backdoor-detects

Image #5 for story malicious-open-source-developer-attempts-xz-backdoor-detects

@mrgunn ⏸️@mrgunn
2 years ago
In case people missed it, a engineer who happened to notice a 500ms latency and had free time + skill to investigate, just disrupted an intelligence campaign running for at least a year that would have created a backdoor into most Linux systems in the world. We got really, really… https://t.co/Epm0uupb18
Adam C.H.@adamcohenhillel
2 years ago
Saw some variations of this xz backdoor meme: "it happened in open source", "it was found by Microsoft employee, aha" aiming to put the open sourcness nature of this as part of the issue... I think this example actually show the exact opposite - why it is so important to have… https://t.co/iyF9Aecx7T
Florian Ederer@florianederer
2 years ago
The xz utils backdoor story is absolutely wild and the fact that no major news outlet has so far reported on it shows how limited the public's understanding of digital security issues is. https://t.co/Lcz4lRvUSx

Crypto /Hacks and Exploits