• News
    • Tech News
    • AI
  • Gadgets
    • Apple
    • iPhone
  • Gaming
    • Playstation
    • Xbox
  • Science
    • News
    • Space
  • Streaming
    • Netflix
  • Vehicles
    • Car News
  • Social Media
    • WhatsApp
    • YouTube
  • Advertise
  • Terms
  • Privacy & Cookies
  • LADbible Group
  • LADbible
  • UNILAD
  • SPORTbible
  • GAMINGbible
  • Tyla
  • FOODbible
  • License Our Content
  • About Us & Contact
  • Jobs
  • Latest
  • Topics A-Z
  • Authors
Facebook
Instagram
X
TikTok
Snapchat
WhatsApp
Submit Your Content
The malicious bug that almost infected the world

Home> News> Tech News

Updated 11:51 1 Apr 2024 GMT+1Published 11:52 1 Apr 2024 GMT+1

The malicious bug that almost infected the world

Malicious code has been discovered just before going mainstream and potentially causing chaos.

Prudence Wade

Prudence Wade

A malicious update has been found just in time before it caused widespread chaos.

Red Hat, a tech company that provides open source solutions, posted an 'urgent security alert' on Friday, saying that two versions of a popular data compression library called XZ Utils had been backdoored with malicious code.

This is scary, because it basically meant that a bad actor had injected it with code that would give them unauthorized remote access to you.

@filippo.abyssdomain.expert / Bluesky
@filippo.abyssdomain.expert / Bluesky

Advert

Software and cryptography engineer Filippo Valsorda posted on social media site Bluesky that it "might be the best executed supply chain attack we've seen described in the open, and it's a nightmare scenario: malicious, competent, authorized upstream in a widely used library".

Luckily, the malicious code was caught in time - with Valsorda suggesting it was spotted "by chance".

According to Ars Technica, Andres Freund, a developer and engineer working on Microsoft’s PostgreSQL offerings, was troubleshooting issues in the universal operating system Debian with SSH, 'The most widely used protocol for remotely logging into devices over the Internet'.

Through Freund's work - and a bit of luck - he discovered the malicious code, which were the result of updates that had been made to xz Utils.

Advert

Ars Technica says Freund then went public and revealed that the updates were actually something much more sinister than they first appeared - and were someone intentionally putting a backdoor in the compression software.

MASTER / Getty
MASTER / Getty

In computing, 'backdoors' are put into tech as a way of bypassing normal authentications and gaining access to someone's data or device - usually for nefarious purposes.

And according to Ars Technica, it looks like this backdoor was 'years in the making' - and could have been worked on as far back as 2021.

Advert

It's all pretty complicated stuff, but at its core, it's good news. The malicious code was caught just in time - meaning that no bad actors have been able to use this particular backdoor to weasel their way into an individual or company operating system.

While this seems like a grand scheme from a highly sophisticated scammer, there are still plenty of simple things you can do to keep your own data safe.

Whether it's making sure you've always got the latest operating system downloaded, making sure you're only downloading trusted apps or having different passwords for everything, small steps can go a long way to making sure you stay safe online.

Featured Image Credit: Surasak Suwanmake/imaginima/Getty
Cybersecurity
Tech News
Tech tips

Advert

Advert

Advert

Choose your content:

13 hours ago
14 hours ago
18 hours ago
  • 13 hours ago

    Elon Musk has chilling warning for future of America following latest Senate draft bill

    The Trump vs Musk feud is back

    News
  • 13 hours ago

    Fire safety experts urge drivers to remove these three items from their cars immediately

    To save your tech and maybe even your vehicle

    News
  • 14 hours ago

    Rare earth minerals discovered on 353,785-acre Texas ranch could power everything from smart phones to military weapons

    The discovery was made on state-owned land

    Science
  • 18 hours ago

    Shocking amount of money Jeff Bezos donated to Venice ahead of controversial $50,000,000 wedding

    With tons of big guests in attendance

    News
  • If you've never changed your passwords they're likely to be on the dark web
  • Scientists explain gruesome thing that would happen if you stuck your hand into Earth's 'death machine'
  • Former hacker reveals the five main security mistakes everyone makes with their devices
  • Scary reason why FBI warn against using public phone charging stations