Vulnerability

The XZ Backdoor CVE-2024-3094

Mar 31, 2024 By Liran Tal In Snyk

Unveiled on the 29th of March 2024 is the high-stakes investment and prolonged campaign by a malicious actor to plant a backdoor in the Linux software library liblzma to gain access to multiple operating systems via Linux distributions, which arguably worked out successfully. That is until a curious engineer noticed a glitch. Currently known affected upstream software and proposed mitigation.

Read Post

Snyk

Read more about The XZ Backdoor CVE-2024-3094

Critical Backdoor Found in XZ Utils (CVE-2024-3094) Enables SSH Compromise

Mar 31, 2024 By Tom Abai In Mend

*April 1 update. it was confirmed that Fedora 40 is not affected by the backdoor. However, users should still downgrade to a 5.4 build to be safe. On March 29th, 2024, a critical CVE was issued for the XZ-Utils library. This vulnerability allows an attacker to run arbitrary code remotely on affected systems. Due to its immediate impact and wide scope, the vulnerability has scored 10 for both CVSS 3.1 and CVSS 4, which is the highest score available.

Read Post

Mend

Read more about Critical Backdoor Found in XZ Utils (CVE-2024-3094) Enables SSH Compromise

A Day In The Life of a Security Leader

Mar 30, 2024 By Snyk In Snyk

Snyk helps software-driven businesses develop fast and stay secure. Continuously find and fix vulnerabilities for npm, Maven, NuGet, RubyGems, PyPI and more.

View Video

Snyk

Read more about A Day In The Life of a Security Leader

CVE-2024-3094: Detecting the SSHD backdoor in XZ Utils

Mar 29, 2024 By Michael Clark In Sysdig

On March 29th, 2024, a backdoor in a popular package called XZ Utils was announced on the Openwall mailing list. This utility includes a library called liblzma which is used by SSHD, a critical part of the Internet infrastructure used for remote access. When loaded, the CVE-2024-3094 affects the authentication of SSHD potentially allowing intruders access regardless of the method.

Read Post

Sysdig

Read more about CVE-2024-3094: Detecting the SSHD backdoor in XZ Utils

Securing your SBOM on Google Cloud

Mar 28, 2024 By David Lugo In Snyk

Over the past few years, software supply chain security has been top of mind for governments and businesses alike. Following Log4Shell in late 2021, the Biden administration’s National Cybersecurity Strategy started focusing on open source supply chain security. The National Security Agency (NSA) recently released new guidance on securing open source software supply chains.

Read Post

Snyk

Read more about Securing your SBOM on Google Cloud

Veracode Customers Shielded from NVD Disruptions

Mar 28, 2024 By Nova Trauben In Veracode

The US National Institute of Standards and Technology (NIST) has almost completely stopped analyzing new vulnerabilities (CVEs) listed in its National Vulnerability Database (NVD). Through the first six weeks of 2024, NIST analyzed over 3,500 CVEs with only 34 CVEs awaiting analysis.1 Since February 13th, however, nearly half (48%) of the 7,200 CVEs received this year by the NVD are still awaiting analysis.2 The number of CVEs analyzed has dropped nearly 80% to less than 750 CVEs analyzed.

Read Post

Veracode

Read more about Veracode Customers Shielded from NVD Disruptions

What is the Dirty COW exploit, and how to prevent it

Mar 27, 2024 By Eyal Katz In Spectral

Dirty COW, a seemingly light-hearted name, masks a severe Linux privilege escalation issue. This bug has affected many older Linux systems, which is concerning given that 41% of web servers run on Linux. Despite widespread patches in distributions like Ubuntu and Red Hat, Dirty COW remains a threat, particularly to outdated systems. As a significant security flaw, it poses risks to various devices and servers even in 2024.

Read Post

Spectral

Read more about What is the Dirty COW exploit, and how to prevent it

Vulnerability Management Lifecycle in DevSecOps

Mar 27, 2024 By Guest Expert In GitGuardian

In this new series, CJ May shares his expertise in implementing secure-by-design software processes that empower engineering teams. The first stage of his DevSecOps program: vulnerability management.

Read Post

GitGuardian

Read more about Vulnerability Management Lifecycle in DevSecOps

How Snyk ensures safe adoption of AI

Mar 27, 2024 By Akanchha Shrivastava In Snyk

The AI revolution is reshaping industries, processes, and the very fabric of software development. As we navigate through this transformative era, it's crucial to understand not only the evolution and application of AI in software development but also the innovative ways in which Snyk, the industry-leading developer security platform, is harnessing AI to enhance security.

Read Post

Snyk

Read more about How Snyk ensures safe adoption of AI

What Does a Solid VM Ticketing Workflow Actually Look Like?

Mar 27, 2024 By Nucleus In Nucleus

In this webinar, Scott Kuffer discusses the challenges and best practices of vulnerability management workflows and ticketing. He emphasizes the discrepancy between vulnerability management teams' priorities and the priorities of the business as a whole. Scott explores different ticketing workflows, starting with basic vulnerability-based tickets and progressing to more advanced options such as asset-based, team-based, and action-based tickets. He highlights the benefits of automating ticket creation and reporting, as well as the potential for redefining how vulnerability management is approached within organizations.

View Video