It's also worth pointing out, given the almost two years of seemingly valuable c... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		ajross on April 1, 2024 \| parent \| context \| favorite \| on: Xzbot: Notes, honeypot, and exploit demo for the x... It's also worth pointing out, given the almost two years of seemingly valuable contribution, that this could be a real person who was compromised or coerced into pushing the exploit.

stefan_ on April 1, 2024 [–]

It’s also worth pointing out that parts of the RCE were prepared almost two years ago which makes this entirely implausible.

ajross on April 1, 2024 | [–]

Were they? The attacker has had commit rights for 1.5 years or so, but my understanding is that all the exploit components were recent commits. Is that wrong?

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact