Kevin Beaumont on Nostr: Worryingly it looks like the backdoor comes via one of the two main devs and dates ...
Worryingly it looks like the backdoor comes via one of the two main devs and dates back over a month from their GitHub account, with legit commits too - XZ is used in systemd so this one might play out for a while.
Published at
2024-03-29 17:13:21Event JSON
{
"id": "7fae9d9cfee7fcec446a87b60e708597db93fccf81ba8b8bf77932fd015ee3c5",
"pubkey": "f6870afcde4480ec8508f50304859e14a51309ff24ab3f0f862c52bdc4af8747",
"created_at": 1711732401,
"kind": 1,
"tags": [
[
"e",
"51fb0bf814bb2d39c9309226a4482a8eb8d2633d7b9ffe35174177b9a51361a1",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://cyberplace.social/users/GossiTheDog/statuses/112180094678734567",
"activitypub"
]
],
"content": "Worryingly it looks like the backdoor comes via one of the two main devs and dates back over a month from their GitHub account, with legit commits too - XZ is used in systemd so this one might play out for a while.",
"sig": "6cde1db55f7ef4a2ac322b0addd6aaa05fb329065f78bc8d1bfd0e15b9fe52a850965f9601e94fe7ddf834d5e989c775eb171c5da6fe212ed4de3159650b93b4"
}
