Attackers tried to insert backdoor into PHP source code

Mar

2021

Attackers tried to insert backdoor into PHP source code

image credit: unsplash

The PHP development team has averted an attempted supply chain compromise that could have opened a backdoor into many web servers.

What happened?

“[On Sunday, March 28] two malicious commits were pushed to the php-src repo from the names of Rasmus Lerdorf and myself. We don’t yet know how exactly this happened, but everything points towards a compromise of the git.php.net server (rather than a compromise of an individual git account),” developer Nikita Popov explained in a message sent out through one of the project’s mailing lists.

Tags: Backdoor php PHP development supply chain compromise

Written by Feedproxy

0 Comments

Comments are closed.

Archives

Archives

About Us

Our mission is to help users and also IT security passionate to reach relevant information related to cyber security.

This publication contains a lot of information and guidance on how to better protect your IT systems, data and activities from malicious factors, and also on how to safely navigate the Internet.

We look forward to hearing from you about cyber safety. Please let us know if there’s something specific you’re interested in learning about.

Contact Us

Name *
Your name is required

E-mail *
Email address entered is invalid

Please enter a message

Incorrect security code

The Latest in IT Security

Attackers tried to insert backdoor into PHP source code

Categories

Featured

Archives

Latest Comments

About Us

Contact Us