Tweakers

Aanvallers plaatsen backdoormogelijkheid in PHP via infectie van Git-server

Aanvallers hebben een achterdeur in de officiële git-repo van PHP weten te plaatsen. Twee commits deden zich voor als kleine aanpassingen, maar zorgen in werkelijkheid voor de mogelijkheid om een ...
ZDNet

GitHub security alerts now support PHP projects

Since the Dependency Graph feature is intertwined with the Security Alerts (Vulnerability Alerts) feature, this also means GitHub users will also be eligible to receive automatic security alerts for ...
ZDNet

Official PHP Git server targeted in attempt to bury malware in code base

The official PHP Git server has been compromised in a potential attempt to plant malware in the code base of the PHP project. On Sunday, PHP programming language developer and maintainer Nikita Popov ...
Fast Company

Hackers put a back door in a code library that powers 79% of websites

On Sunday some malicious actors tried to install a back door into the PHP code library, a server-side programming language that powers 79% of sites on the internet, including Facebook and Wikipedia.
ITWire

iTWire - PHP shifts to GitHub after malicious commits to own git server

The PHP project has been forced to move its operations from its own git server to the Microsoft-owned software code repository GitHub after two malicious commits were discovered in the php-srx ...
WeLiveSecurity

Backdoor added to PHP source code in Git server breach

Unknown attackers compromised the official PHP Git server and planted a backdoor in the source code of the programming language, potentially putting websites using the tainted code at risk of complete ...

PHP 8.5 focusses on readability, debugging features and more security

Release Candidate 1 for PHP 8.5 is now available. The Release Manager confirms the scheduled development status and the complete integration of all features.