pull down to refresh

Backdoor in upstream xz/liblzma leading to SSH server compromisewww.openwall.com/lists/oss-security/2024/03/29/4
10 sats \ 1 comment \ @hn 31 Mar 2024 tech
related
XZ backdoor behavior inside OpenSSHsecurelist.com/xz-backdoor-part-3-hooking-ssh/113007/
10 sats \ 0 comments \ @ch0k1 24 Jun 2024 news
Inside the failed attempt to backdoor SSH globally — that got caught by chancedoublepulsar.com/inside-the-failed-attempt-to-backdoor-ssh-globally-that-got-caught-by-chance-bbfe628fafdd
2035 sats \ 23 comments \ @ch0k1 1 Apr 2024 security
Finding packages affected by xz vuln on Nix
3045 sats \ 6 comments \ @jurraca 30 Mar 2024 NixOS
xz-utils backdoor situationgist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27
1617 sats \ 4 comments \ @ch0k1 30 Mar 2024 security
The Mystery of ‘Jia Tan,’ the XZ Backdoor Mastermindwww.wired.com/story/jia-tan-xz-backdoor/
523 sats \ 2 comments \ @ch0k1 3 Apr 2024 security
A new flaw in OpenSSH can lead to remote code executionsecurityaffairs.com/165535/hacking/openssh-flaw-cve-2024-6409.html
68 sats \ 0 comments \ @ch0k1 11 Jul 2024 news
Backdoor Slipped Into Popular Code Library, Drains ~$155k From SOL Walletsarstechnica.com/information-technology/2024/12/backdoor-slips-into-popular-code-library-drains-155k-from-digital-wallets/
81 sats \ 0 comments \ @0xbitcoiner 5 Dec 2024 security
Hackers Weaponized Free SSH Client Putty to Attack Windows Systems With Malwarecybersecuritynews.com/hackers-weaponized-free-ssh-client-putty/amp/?fbclid=IwY2xjawKrqwRleHRuA2FlbQIxMQABHuPfAQ66mFpQTzghr6hIz0bZuSYaJyTRMMMm2aqPFEO9FqeksaFDgc5nyQtx_aem_wguTlX9JbsTX_InCWyJuMw
10 sats \ 0 comments \ @ch0k1 3 Jun news
PoC Exploit Released For OpenSSH Arbitrary Code Execution Vulnerabilitycybersecuritynews.com/regresshion-code-execution-vulnerability/
95 sats \ 0 comments \ @ch0k1 7 Jan security
Critical Vulnerability in Wazuh Server Enables Malicious Code Executioncybersecuritynews.com/wazuh-server-vulnerability-rce/amp/
21 sats \ 0 comments \ @ch0k1 4 Mar security
OpenSSH bugs threaten enterprise security, uptimewww.theregister.com/2025/02/18/openssh_vulnerabilities_mitm_dos/
56 sats \ 1 comment \ @ch0k1 19 Feb security
Backdoor Found in XZ Tools Used by Most Linux Distroswww.nobsbitcoin.com/backdoor-in-xz-tools-used-by-most-linux-distros/
96 sats \ 0 comments \ @BitcoinIsTheFuture 29 Mar 2024 econ
NixOS and reproducible builds could have detected the xz backdoorluj.fr/blog/how-nixos-could-have-detected-xz.html
113 sats \ 1 comment \ @hn 23 Mar tech
XZ backdoor story – Initial analysissecurelist.com/xz-backdoor-story-part-1/112354/
287 sats \ 0 comments \ @hn 13 Apr 2024 tech
OpenSSH Backdoorsblog.isosceles.com/openssh-backdoors/
140 sats \ 0 comments \ @dontforgetthekeys 24 Aug 2024 security
Backdoor in ssh in Fedora and Debian testingtwitter.com/TheBlueMatt/status/1773766955251495311
526 sats \ 9 comments \ @Scoresby 29 Mar 2024 Linux
Linux maintainers were infected for 2 years by SSH-dwelling backdoorarstechnica.com/security/2024/05/ssh-backdoor-has-infected-400000-linux-servers-over-15-years-and-keeps-on-spreading/
131 sats \ 0 comments \ @DEADBEEF 15 May 2024 security
Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)github.com/amlweems/xzbot
21 sats \ 1 comment \ @hn 1 Apr 2024 tech
New SSH Vulnerabilitywww.schneier.com/blog/archives/2023/11/new-ssh-vulnerability.html
841 sats \ 0 comments \ @brandonsbytes 16 Nov 2023 tech
Multiple Linux Backdoors Discovered Targeting Bitcoin Core Developer -LukeDashJrlordx64.medium.com/multiple-linux-backdoors-discovered-targeting-bitcoin-core-developer-technical-analysis-793f8491f561
2269 sats \ 62 comments \ @nym 19 Jan 2023 bitcoin
research!rsc: Timeline of the xz open source attackresearch.swtch.com/xz-timeline
10 sats \ 0 comments \ @Rsync25 2 Apr 2024 tech