pull down to refresh

Backdoor in upstream xz/liblzma leading to SSH server compromisewww.openwall.com/lists/oss-security/2024/03/29/4
10 sats \ 1 comment \ @hn 31 Mar 2024 tech
related
XZ backdoor behavior inside OpenSSHsecurelist.com/xz-backdoor-part-3-hooking-ssh/113007/
10 sats \ 0 comments \ @ch0k1 24 Jun 2024 news
Inside the failed attempt to backdoor SSH globally — that got caught by chancedoublepulsar.com/inside-the-failed-attempt-to-backdoor-ssh-globally-that-got-caught-by-chance-bbfe628fafdd
2035 sats \ 23 comments \ @ch0k1 1 Apr 2024 security
Finding packages affected by xz vuln on Nix
3045 sats \ 6 comments \ @jurraca 30 Mar 2024 NixOS
xz-utils backdoor situationgist.github.com/thesamesam/223949d5a074ebc3dce9ee78baad9e27
1617 sats \ 4 comments \ @ch0k1 30 Mar 2024 security
The Mystery of ‘Jia Tan,’ the XZ Backdoor Mastermindwww.wired.com/story/jia-tan-xz-backdoor/
523 sats \ 2 comments \ @ch0k1 3 Apr 2024 security
A new flaw in OpenSSH can lead to remote code executionsecurityaffairs.com/165535/hacking/openssh-flaw-cve-2024-6409.html
68 sats \ 0 comments \ @ch0k1 11 Jul 2024 news
Critical Vulnerability in Wazuh Server Enables Malicious Code Executioncybersecuritynews.com/wazuh-server-vulnerability-rce/amp/
21 sats \ 0 comments \ @ch0k1 4 Mar 2025 security
Backdoor Found in XZ Tools Used by Most Linux Distroswww.nobsbitcoin.com/backdoor-in-xz-tools-used-by-most-linux-distros/
96 sats \ 0 comments \ @BitcoinIsTheFuture 29 Mar 2024 econ
NixOS and reproducible builds could have detected the xz backdoorluj.fr/blog/how-nixos-could-have-detected-xz.html
113 sats \ 1 comment \ @hn 23 Mar 2025 tech
XZ backdoor story – Initial analysissecurelist.com/xz-backdoor-story-part-1/112354/
287 sats \ 0 comments \ @hn 13 Apr 2024 tech
OpenSSH Backdoorsblog.isosceles.com/openssh-backdoors/
140 sats \ 0 comments \ @dontforgetthekeys 24 Aug 2024 security
Xzbot: Notes, honeypot, and exploit demo for the xz backdoor (CVE-2024-3094)github.com/amlweems/xzbot
21 sats \ 1 comment \ @hn 1 Apr 2024 tech
New SSH Vulnerabilitywww.schneier.com/blog/archives/2023/11/new-ssh-vulnerability.html
841 sats \ 0 comments \ @brandonsbytes 16 Nov 2023 tech
Multiple Linux Backdoors Discovered Targeting Bitcoin Core Developer -LukeDashJrlordx64.medium.com/multiple-linux-backdoors-discovered-targeting-bitcoin-core-developer-technical-analysis-793f8491f561
2269 sats \ 62 comments \ @nym 19 Jan 2023 bitcoin
research!rsc: Timeline of the xz open source attackresearch.swtch.com/xz-timeline
10 sats \ 0 comments \ @Rsync25 2 Apr 2024 tech
CVE-2023-38408: Remote Code Execution in OpenSSH’s forwarded ssh-agentblog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent
61 sats \ 1 comment \ @beorange 19 Jul 2023 tech
Backdoor in Bitcoin Core /stwitter.com/bitschmidty/status/1742909238211424587
224 sats \ 8 comments \ @south_korea_ln 4 Jan 2024 bitcoin
Backdoor Slipped Into Popular Code Library, Drains ~$155k From SOL Walletsarstechnica.com/information-technology/2024/12/backdoor-slips-into-popular-code-library-drains-155k-from-digital-wallets/
81 sats \ 0 comments \ @0xbitcoiner 5 Dec 2024 security
In a first, cryptographic keys protecting SSH connections stolen in new attackarstechnica.com/security/2023/11/hackers-can-steal-ssh-cryptographic-keys-in-new-cutting-edge-attack/
461 sats \ 0 comments \ @kristapsk 15 Nov 2023 tech
XZ backdoor: "It's RCE, not auth bypass, and gated/unreplayable."bsky.app/profile/filippo.abyssdomain.expert/post/3kowjkx2njy2b
20 sats \ 1 comment \ @hn 31 Mar 2024 tech
Hertzbleed: a New Family of Side Channel Attackswww.hertzbleed.com/
292 sats \ 2 comments \ @CypherPoet 15 Jun 2022 bitcoin