Hacker News new | past | comments | ask | show | jobs | submit login

It’s also possible that this could be a change in personnel. Maybe the one who earned trust and took over was no more working for them. And an amateur took over with tight deadlines that lead to this gaffe for them.



The abrupt change in time-of-day when commits occurred supports the theory that Jai Tan is more than one person: https://twitter.com/birchb0y/status/1773871381890924872


The text near the box makes it sound like these are just the fixes - not adding the test files but updating them.

At that point it would have been clear “the race is on” to avoid detection, so it’s not too surprising someone would work late to salvage the operation.


Whoops, you're right. So this isn't really evidence of anything.

Out of interest I looked up the other commit at that time of day visible in that graph, laying on the arrow. It's [1], which changes the git URL from git.tukaani.org to github.com. Of course, moving the project hosting to github was part of the attack.

[1] https://git.tukaani.org/?p=xz.git;a=commitdiff;h=e1b1a9d6370...


If the mistakes align with the time of day change, perhaps the author had a distraction that pushed the hours and compromised judgement.




Consider applying for YC's Summer 2025 batch! Applications are open till May 13

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: