As sure as long weekends arrive in the western world, so too does news of new supply chain attacks. The easter bank holidays were no exception, with the discovery of a targeted attack against the popular XZ compression utility seen in many linux distributions such as fedora, debian to name a few.
Article Link: CVE-2024-3094 The targeted backdoor supply chain attack against XZ and libzma