AndyThat is a very good summary of what happened with the xz backdoor.
YouTube
Tillmann Werner
Denzel@G33KatWork Cool to see this published, and pop up on my feed! I actually consulted with the writers of that video on the tech details of the backdoor.
If you’d like a much less polished (but more technical) explanation, I gave a lecture about a month after it happened: https://youtu.be/Q6ovtLdSbEA
Deep Dive into XZ Utils Backdoor - Columbia Engineering, Advanced Systems Programming Guest Lecture
@FarmerDenzel Oh nice! I'll watch that as well! I just followed the whole thing on social media when it went down while a bunch of peers (👋 @q3k) started reverse engineering the payload.
q3k 
@G33KatWork @FarmerDenzel I just decoded the string trie DFA :). Everything else was other people.