I'm sure there are heuristics like the rule of large numbers. I like 80/20 for
most things. If we assume we will, within some space and time window, see 20%
of what's there, then there are ~4 of these exploits sitting on your system
right now, active or sleeping.
On 4/2/24 09:35, Marcus Daniels wrote:
And how many similar exploits are out there, sponsored by GCHQ, NSA, etc.
-----Original Message-----
From: Friam <friam-boun...@redfish.com> On Behalf Of glen
Sent: Tuesday, April 2, 2024 8:52 AM
To: friam@redfish.com
Subject: [FRIAM] move fast, break things
What we know about the xz Utils backdoor that almost infected the world
https://arstechnica.com/security/2024/04/what-we-know-about-the-xz-utils-backdoor-that-almost-infected-the-world/
almost immediately, a never-before-seen participant named Jigar Kumar joined
the discussion and argued that Lasse Collin, the longtime maintainer of xz
Utils, hadn’t been updating the software often or fast enough.
--
ꙮ Mɥǝu ǝlǝdɥɐuʇs ɟᴉƃɥʇ' ʇɥǝ ƃɹɐss snɟɟǝɹs˙ ꙮ
-. --- - / ...- .- .-.. .. -.. / -- --- .-. ... . / -.-. --- -.. .
FRIAM Applied Complexity Group listserv
Fridays 9a-12p Friday St. Johns Cafe / Thursdays 9a-12p Zoom
https://bit.ly/virtualfriam
to (un)subscribe http://redfish.com/mailman/listinfo/friam_redfish.com
FRIAM-COMIC http://friam-comic.blogspot.com/
archives: 5/2017 thru present https://redfish.com/pipermail/friam_redfish.com/
1/2003 thru 6/2021 http://friam.383.s1.nabble.com/
