On the critical path to implant backdoors and the effectiveness of potential mitigation techniques: Learnings from XZ

Add to your list(s) Download to your calendar using vCal

• Mario Lins, Johannes Kepler University Linz
• Tuesday 19 November 2024, 14:00-15:00
• Webinar & LT2, Computer Laboratory, William Gates Building..

If you have a question about this talk, please contact Tina Marjanov.

An emerging supply-chain attack due to a backdoor in XZ Utils has been identified. The backdoor allows an attacker to run commands remotely on vulnerable servers utilizing SSH without prior authentication. We have analyzed the critical attack path to discuss current mitigation strategies for such kinds of supply-chain attacks.

https://us02web.zoom.us/j/82930573803?pwd=nhSbbQcKpjkUA05eLgWeEqCgPEBqgG.1 Meeting ID: 829 3057 3803 Passcode: 130354

This talk is part of the Computer Laboratory Security Seminar series.

This talk is included in these lists:

• All Talks (aka the CURE list)
• Cambridge talks
• Computer Laboratory Security Seminar
• Department of Computer Science and Technology talks and seminars
• Interested Talks
• School of Technology
• Security-related talks
• Trust & Technology Initiative - interesting events
• Webinar & LT2, Computer Laboratory, William Gates Building.
• bld31

Note that ex-directory lists are not shown.