The xz Backdoor Was Just the Beginning: Linux Foundation Sounds the Alarm on Social Engineering Attacks Targeting Open Source

Two years after a near-catastrophic backdoor was slipped into a critical piece of Linux infrastructure, the open-source community is still reckoning with the implications. And the threat hasn’t receded — it may be accelerating.

The Linux Foundation, along with the Open Source Security Foundation (OpenSSF), published a new report warning that social engineering campaigns targeting open-source software maintainers are not isolated incidents but part of a broader, persistent pattern of attacks. The report, titled “Social Engineering Backdoors in Open Source Projects,” draws directly from the lessons of the xz Utils compromise discovered in March 2024 and catalogs similar tactics observed across other projects since then, according to The Register.

The message is blunt: what happened with xz Utils wasn’t a one-off. It was a playbook.

For those who need a refresher, the xz Utils incident remains one of the most chilling supply-chain attacks ever discovered in open-source software. A contributor operating under the pseudonym “Jia Tan” spent roughly two years building trust within the xz Utils project — a compression library embedded in virtually every Linux distribution — before inserting a sophisticated backdoor into the code. The backdoor, had it gone undetected, would have given an attacker remote code execution capabilities on any system running the compromised version through OpenSSH. Microsoft engineer Andres Freund caught it almost by accident, noticing unusual latency in SSH connections during routine benchmarking. That serendipitous discovery likely prevented one of the most damaging software supply-chain compromises in history.

The new Linux Foundation report dissects the social dynamics that made the attack possible. Jia Tan didn’t hack anything, at least not in the traditional sense. Instead, the attacker exploited something far harder to patch: human trust and the chronic exhaustion of volunteer maintainers.

The xz Utils project was maintained essentially by a single developer, Lasse Collin, who had publicly discussed burnout and mental health challenges. Jia Tan appeared as a helpful contributor, submitting legitimate patches and gradually taking on more responsibility. Other accounts — suspected sock puppets — pressured Collin to hand over more control, complaining about slow response times and urging him to accept help. Over time, Jia Tan gained commit access and eventually became the project’s de facto co-maintainer. The social engineering was patient, methodical, and devastatingly effective.

What the Linux Foundation’s report now makes clear is that similar approaches have been attempted elsewhere. The report identifies patterns across multiple open-source projects where new contributors followed strikingly similar trajectories: building credibility through small, useful contributions, then gradually pushing for elevated privileges while other accounts applied social pressure on existing maintainers. Some of these attempts were caught. Others may not have been.

“The hardest part of this problem is that most of the individual actions involved are indistinguishable from the behavior of legitimate, well-intentioned contributors,” the report states, as cited by The Register. That’s the core difficulty. Open source depends on contributions from strangers. Always has. Distinguishing a patient attacker from an enthusiastic newcomer is extraordinarily difficult without hindsight.

The report outlines several recommendations. Among them: projects should avoid single-maintainer dependencies for critical infrastructure, adopt stronger code-review requirements for changes to build systems and CI/CD pipelines, implement provenance tracking for contributions, and establish clearer governance structures that make it harder for any single contributor to accumulate unchecked authority. The OpenSSF has also been pushing its “Scorecard” tool, which automatically evaluates open-source projects for security best practices, though adoption remains uneven.

None of this is easy. And none of it is cheap.

The fundamental tension at the heart of open-source security hasn’t changed. The software that underpins global financial systems, government infrastructure, and the internet itself is often maintained by unpaid volunteers working in their spare time. The xz Utils incident laid this bare in spectacular fashion, but the structural problem predates it by decades. A 2024 Harvard Business School study estimated that the demand-side value of open-source software is $8.8 trillion, yet the supply side — the actual people writing and maintaining the code — operates largely on goodwill and donated time.

The Linux Foundation’s report doesn’t mince words about the resource gap. It notes that many critical projects still lack basic security infrastructure: no mandatory code signing, no multi-party review for releases, no formal contributor vetting process. For projects maintained by one or two people, implementing these safeguards is a burden that can itself drive maintainers away. It’s a vicious cycle.

Industry response since the xz Utils incident has been mixed. On one hand, organizations like the OpenSSF have received increased funding. Google, Microsoft, Amazon, and other major technology companies have pledged tens of millions of dollars toward open-source security initiatives. The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has made open-source software security a stated priority. The European Union’s Cyber Resilience Act, set to impose security requirements on software sold in EU markets, will likely force companies to pay closer attention to the provenance of the open-source components in their products.

On the other hand, money alone doesn’t solve the maintainer burnout problem. You can fund audits, build tools, and hire security researchers. But you can’t easily replace the institutional knowledge of a lone maintainer who has been stewarding a project for fifteen years. And you can’t legislate trust.

The report also touches on attribution — or the lack of it. Despite extensive analysis, the identity behind Jia Tan has never been publicly confirmed. Researchers and intelligence analysts have speculated about nation-state involvement, with some pointing to operational patterns consistent with Chinese or Russian intelligence services, but no definitive attribution has been made. The Linux Foundation report deliberately avoids speculation on this point, focusing instead on the tactics themselves rather than who deployed them. The reasoning is practical: the playbook works regardless of who wrote it, and defenders need to prepare for it no matter the source.

This pragmatic focus is warranted. Social engineering attacks on open-source projects don’t require the resources of a nation-state. A sufficiently motivated individual with patience and decent coding skills could replicate the approach. The barrier to entry is low. The potential payoff — embedding a backdoor in software running on millions or billions of machines — is enormous.

So where does this leave the industry?

In a difficult spot. The open-source model’s greatest strength — that anyone can contribute — is also its greatest vulnerability when adversaries are willing to play the long game. Technical solutions help but don’t eliminate the risk. Better tooling for detecting anomalous contributor behavior is being developed, including AI-assisted analysis of commit patterns and communication styles, but these tools are nascent and raise their own concerns about privacy and false positives. Community-level solutions — like mentorship programs, maintainer support networks, and shared governance models — are promising but slow to scale.

The Linux Foundation’s report is, in many ways, a call to take the social dimensions of software security as seriously as the technical ones. Firewalls and static analysis tools can’t detect a contributor who spends two years earning trust before making a malicious commit. That requires a different kind of vigilance — one rooted in organizational awareness, community health, and sustainable funding for the people who keep critical software alive.

The xz Utils backdoor was discovered through luck. The next one might not be.

That’s the uncomfortable truth the report forces the industry to confront. Not that open source is broken, but that the systems of trust it relies on were never designed to withstand sustained, deliberate manipulation by sophisticated adversaries. Fixing that will require more than patches. It will require rethinking how the world supports, governs, and secures the software it depends on most.