LetsDefend Monitoring Alert

XZ/LIBLZMA Backdoor Implant Detected CVE-2024-3094

Apr, 04, 2024, 04:52 AM

Event ID: 247

Event Time: Apr, 04, 2024, 04:52 AM

Rule Name: SOC271 - XZ/LIBLZMA Backdoor Implant Detected CVE-2024-3094

Alert Type: Malware

MITRE Technique:
T1195 - Initial Access - Supply Chain Compromise,

Real World Example:A significant security flaw leading to Remote Code Execution (RCE), identified as CVE-2024-3094, has been discovered in the widely-used open-source library, XZ Utils.

Severity: Critical

Incident Responder

2024 © LetsDefend

45305 Catalina ct. Suite 150, Sterling VA 20166