arstechnica , 3 months ago What we know about the xz Utils backdoor that almost infected the world Malicious updates made to a ubiquitous tool were a few weeks away from going mainstream. https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
What we know about the xz Utils backdoor that almost infected the world
Malicious updates made to a ubiquitous tool were a few weeks away from going mainstream.
https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social
freevolt24 , 3 months ago @arstechnica As a minimum measurement to thwart social engineering for important FOSS projects, can we only admit verified people to "contribute" to them? Or would there be a major loophole in it too?
@arstechnica As a minimum measurement to thwart social engineering for important FOSS projects, can we only admit verified people to "contribute" to them? Or would there be a major loophole in it too?