ZARZA We are Zarza, the prestigious firm behind major projects in information technology.
Listen "The XZ exploit: The day the internet got lucky"
Episode Synopsis
This week we're talking about a backdoor inserted into a popular Linux file compression tool, which had the potential to massively undermine the security of vast swathes of the internet. What happened? How did it happen? And how was it thwarted?
Links
- Andres Freund's Mastodon - where he revealed the backdoor: https://mastodon.social/@AndresFreundTec
- in Ars Technica's article about it: https://arstechnica.com/security/2024/03/backdoor-found-in-widely-used-linux-utility-breaks-encrypted-ssh-connections/
- in the verge's article about it https://www.theverge.com/2024/4/2/24119342/xz-utils-linux-backdoor-attempt- in Wired's article about it https://www.wired.com/story/jia-tan-xz-backdoor/
- Check out this excellent and very helpful diagram: https://twitter.com/fr0gger_/status/1775759514249445565
- The XKCD comic we mention: https://xkcd.com/538/
Links
- Andres Freund's Mastodon - where he revealed the backdoor: https://mastodon.social/@AndresFreundTec
- in Ars Technica's article about it: https://arstechnica.com/security/2024/03/backdoor-found-in-widely-used-linux-utility-breaks-encrypted-ssh-connections/
- in the verge's article about it https://www.theverge.com/2024/4/2/24119342/xz-utils-linux-backdoor-attempt- in Wired's article about it https://www.wired.com/story/jia-tan-xz-backdoor/
- Check out this excellent and very helpful diagram: https://twitter.com/fr0gger_/status/1775759514249445565
- The XKCD comic we mention: https://xkcd.com/538/
More episodes of the podcast Technology Pill
What's News? Back to work!
19/09/2025
Rewilding the Internet with Maria Farrell
15/08/2025
What's News?
18/04/2025
In God we trust