Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

This is probably the worst backdoor in history in the open source sphere, if not ever.

Certainly the worst of my career.



Worst as in "bad" or worst as in "did not have any impact as a backdoor"?


Bad. And we don't know if the intended target, if any, was ever hit. They might still have gotten what they wanted.

In terms of severity and nefarious intent, it's probably the worst that's happened.


Both? This is eternal blue, Linux edition, except it was never shipped.


My favorite was sendmail's WIZ followed by SHELL bug.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: