Malicious Backdoor Spotted in Linux Compression Library XZ
This supply-chain compromise may have been caught early enough to prevent widespread exploitation, and it may only mainly affect bleeding-edge distros that picked up the latest xz versions right away.