CVE-2024-3094: Backdoor Attack Against xz and liblzma

sonatype.com

Learn about a targeted backdoor supply chain attack against the popular XZ compression utility seen in many Linux distributions such as fedora and debian.

1 page links to this URL

Supply chains and watering holes

cryptography.dog Aaron P MacSween Dec 14, 2024

On the apparently subtle distinction between supply chains and watering holes

1 inbound link website en