Sometimes you get gems from LinkedIn:
From Chris Wysopal:
https://www.linkedin.com/in/wysopal/
"It would be interesting to run this analysis across all open source committers. I'm keen to understand if we can root out other backdoors by detecting signals like these learned from the XZ backdoor incident."
THIS!
BrianKrebs /
npub1vc…0axsh
2024-04-01 19:18:00
in reply to nevent1q…6nlr
Author Public Key
npub1vc39pnjdqd77zzdxff4qyv8h3x0ey2mkx33c3vl8egr0a9ysxkxsk0axshPublished at
2024-04-01 19:18:00Event JSON
{
"id": "8db340a4c976b8753e6b31c769dbe27545d8c250b833eb9f6709c696598d4626",
"pubkey": "662250ce4d037de109a64a6a0230f7899f922b76346388b3e7ca06fe9490358d",
"created_at": 1711999080,
"kind": 1,
"tags": [
[
"e",
"1219935f264b0fbced0a7545bacf8bde836e4e0e857e8dec91b85a732f14e864",
"",
"root"
],
[
"p",
"662250ce4d037de109a64a6a0230f7899f922b76346388b3e7ca06fe9490358d"
],
[
"proxy",
"https://infosec.exchange/users/briankrebs/statuses/112197571739687377",
"activitypub"
],
[
"L",
"pink.momostr"
],
[
"l",
"pink.momostr.activitypub:https://infosec.exchange/users/briankrebs/statuses/112197571739687377",
"pink.momostr"
]
],
"content": "Sometimes you get gems from LinkedIn:\n\nFrom Chris Wysopal:\nhttps://www.linkedin.com/in/wysopal/\n\n\"It would be interesting to run this analysis across all open source committers. I'm keen to understand if we can root out other backdoors by detecting signals like these learned from the XZ backdoor incident.\"\n\nTHIS!",
"sig": "97c318f187c8a20360d2b059805fc566b15b0d4cf1380312d1528c1a76cb77d2f4d268dc8e7a2817b87c1b592af111f78f95c0e63bce9be5e1451b8d47f5d7b7"
}