The Cybersecurity and Infrastructure Security Agency (CISA) and the open source community have joined forces to respond to reports of malicious code discovered in versions 5.6.0 and 5.6.1 of XZ Utils. This malicious activity has been assigned the Common Vulnerabilities and Exposures (CVE) identifier CVE-2024-3094.

XZ Utils, which is widely used data compression software and can be found in various Linux distributions, has been the target of unauthorized access attempts due to the presence of the malicious code. As a precautionary measure, CISA is recommending developers and users to downgrade XZ Utils to a safe version, such as XZ Utils 5.4.6 Stable.

The identified malicious code has the potential to compromise the security of affected systems, allowing unauthorized access to sensitive data and potentially leading to other illicit activities. To mitigate the risk, CISA urges developers and users to thoroughly scan their systems for any signs of malicious activity and report any findings to the agency.

CISA's collaboration with the open source community underscores the importance of collective efforts in addressing cybersecurity threats. By working together, they aim to ensure the safety and integrity of widely used software like XZ Utils, helping protect users from potential cyberattacks and data breaches.

As the investigation into the origin and impact of the malicious code is ongoing, CISA is closely monitoring the situation and providing regular updates to the public. It is important for individuals and organizations utilizing XZ Utils to remain vigilant, follow the recommended guidelines, and promptly report any suspicious activities to CISA.

Developers and users are encouraged to stay informed about the latest security advisories and updates from both CISA and the open source community to ensure the continued protection of their systems and data.