Curated incident analyses and vulnerability deep dives from almamy.net.https://almamy.net/en-gbhttps://almamy.net/security/2025-03-xz-backdoor/https://almamy.net/security/2025-03-xz-backdoor/How a supply chain attacker spent two years building trust before planting a backdoor in a critical compression library.Sat, 29 Mar 2025 00:00:00 GMTsupply-chainlinuxbackdoorhttps://almamy.net/security/2024-12-ivanti-zero-day/https://almamy.net/security/2024-12-ivanti-zero-day/Two zero-day vulnerabilities in Ivanti Connect Secure allowed unauthenticated remote code execution before patches were available.Wed, 08 Jan 2025 00:00:00 GMTvpnzero-dayrceivanti