The only reason why xz got exposed was because someone noticed SSH was a bit slower and decided to take their own hands to investigate. It’s possible this backdoor would go unnoticed for far longer if the attacker didn’t make this slight oversight.
So it might be that there have been other, successful attacks before. It’s just that this one is the one that got exposed.
There are two types of backdoors, the ones that were fixed and the ones we don’t know about.
The only reason why xz got exposed was because someone noticed SSH was a bit slower and decided to take their own hands to investigate. It’s possible this backdoor would go unnoticed for far longer if the attacker didn’t make this slight oversight.
So it might be that there have been other, successful attacks before. It’s just that this one is the one that got exposed.
Slower as in 500ms slower iirc.
Linux users when bloat
tbh given the context 500ms is a lot.
And the ones you leave for yourself to check during development and forgotten to close before release.
Shhh we don’t talk about these !