My mastodon feed is full of IT security specialist talking about the xz affair where someone let a backdoor in some library.

But beside showing the two side of Free/Libre software (anybody can add a backdoor, and anybody can spot it), I have no idea how it impacts the average person. Is it a common library or something used only by specific application ? Would my home-grade router protects me ?

  • @[email protected]
    link
    fedilink
    179 months ago

    For exploits like this, most of the risk is in services you use. Websites, power company customer database, etc. are at risk of customer data dumps leaking.

    Be extra alert for targeted scams and phishing, i.e. Phil from HBO Max customer department calling and asking to correct your payment details and he sounds very convincing because he knows your username, viewing history, etc.

    And be extra fast with installing any security updates on all your stuff.