Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

It was found in a few weeks so why is it more likely it wouldn't have been noticed for months/years with more people running the backdoored version of the code?


We were lucky that the backdoor called attention to itself, because it impacted the performance off ssh and introduced valgrind warnings.


Doesn't that further suggest non-state actor(s)?


I've heard that it was only detected because the developer that found it was using different compiler flags than the default. Under default settings, the backdoor was stealthier.




Consider applying for YC's Winter 2026 batch! Applications are open till Nov 10

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: