The XZ Backdoor Story: The Undercover Op That Set the Internet on Fire
Thomas Roccia
DEF CON 32 Main Stage · Day 1 · Main Stage
The XZ Backdoor story represents one of the most sophisticated and alarming supply chain attacks ever uncovered, a testament to the persistent and insidious nature of modern cyber threats. Presented by Thomas Roccia, a Senior Threat Researcher at Microsoft, this talk delves into the meticulous discovery of a backdoor hidden within the widely used **XZ Utils** data compression library. This operation, described as an "undercover op" spanning nearly three years, aimed to compromise a fundamental component of the open-source ecosystem, potentially granting unauthorized remote access to millions of Linux systems via **SSH**.
AI review
Roccia's breakdown of the XZ backdoor discovery is essential viewing. This isn't just another incident report; it's a deep dive into how a truly sophisticated supply chain attack was *actually* found, detailing the meticulous debugging and fortunate coincidences that saved countless systems. The talk cuts through the noise, delivering concrete technical insights on an event that fundamentally reshaped our understanding of open-source security, presented by someone genuinely close to the initial investigation.