Thomas Roccia Mar 31, 2024

🤯 The level of sophistication of the XZ attack is very impressive! I tried to make sense of the analysis in a single page (which was quite complicated)!

I hope it helps to make sense of the information out there. Please treat the information "as is" while the analysis progresses! 🧐 #infosec #xz

Show threadWinter Trabex

@fr0gger

This seems incredibly complicated. What was the purpose of making so many bad things?

Mar 31, 2024 at 11:48amWeb
Show threadColin WatsonMar 31, 2024
@trabex @fr0gger ultimately, to construct a back door in the SSH service that would let the attackers execute unauthorized code on systems with the compromised library installed