This backdoor almost infected Linux everywhere: The XZ Utils close call

For the first time, an open-source maintainer put malware into a key Linux utility. We're still not sure who or why - but here's what you can do about it.