Risky Bulletin Newsletter
April 03, 2024
Risky Biz News: F-Droid narrowly avoided XZ-like incident in 2020
Presented by

News Editor
Back in June 2020, a mysterious individual tried to insert an SQL injection vulnerability in F-Droid, an open-source app store for Android devices.
The incident was disclosed this week by Hans-Christoph Steiner, the project's current lead developer.
Steiner likened it to the recent XZ Utils backdoor incident.