Backdoor

A hidden method for bypassing normal authentication or access controls in software. Backdoors can be intentional (a developer leaving a debug entry point) or malicious (an attacker inserting one via a compromised dependency). The xz-utils incident in 2024 demonstrated how a sophisticated attacker can spend years building trust in an open-source project specifically to insert a backdoor into critical infrastructure.