Backdoor in upstream xz/liblzma leading to SSH server compromise

[rpigab]

I'd love to be at Microsoft right now and have the power to review this user's connection history to Github, even though VPN exists, many things can be learned from connection habits, links to ISPs, maybe even guess if VPNs were used, roundtrip time on connections can give hints.

I really don't think some random guy wants to weaken ssh just to extract some petty ransomware cash from a couple targets.

[qecez]

> I really don't think some random guy wants to weaken ssh just to extract some petty ransomware cash from a couple targets.

Which is why there's probably nothing remotely interesting in them logs.

[mhh__]

Intelligence agencies get caught red handed all the time so I wouldn't be too sure.

If it was an organised group I'm sure they were careful, of course, but it only takes one fuckup.

[RockRobotRock]

Nah. I'm sure Microsoft got a call from the alphabet boys and nobody, not even internal employees are allowed to look at the logs right now.

[megous]

Oh my, another reason not to use github. :D So many reasons poping up just in this comment section alone.

[optimalsolver]

I'm guessing Microsoft just got a call from the Government telling them not to look too deeply into it.

[alpb]

That’d be illegal for an employee to do.

[sapiogram]

Why?

[alpb]

You can't access personally identify information out of curiosity. That's a fireable offense in nearly any company that cares about privacy.