Security News > 2024 > April > Popular Rust Crate liblzma-sys Compromised with XZ Utils Backdoor Files
2024-04-12 14:55
"Test files" associated with the XZ Utils backdoor have made their way to a Rust crate known as liblzma-sys, new findings from Phylum reveal. liblzma-sys, which has been downloaded over 21,000 times to date, provides Rust developers with bindings to the liblzma implementation, an underlying library that is part of the XZ Utils data compression software. The
News URL
https://thehackernews.com/2024/04/popular-rust-crate-liblzma-sys.html
Related news
- Red Hat warns of backdoor in XZ tools used by most Linux distros (source)
- Beware! Backdoor found in XZ utilities used by many Linux distros (CVE-2024-3094) (source)
- Malicious SSH backdoor sneaks into xz, Linux world's data compression library (source)
- Urgent: Secret Backdoor Found in XZ Utils Library, Impacts Major Linux Distros (source)
- Week in review: Backdoor found in XZ utilities, weaponized iMessages, Exchange servers at risk (source)
- XZ Utils backdoor update: Which Linux distros are affected and what can you do? (source)
- Malicious xz backdoor reveals fragility of open source (source)
- New XZ backdoor scanner detects implant in any Linux binary (source)
- xz Utils Backdoor (source)
- What can be done to protect open source devs from next xz backdoor drama? (source)