The team behind popular web programing site PHP.net is in the process of restoring services and tightening security in the aftermath of a hack that exposed visitors to JavaScript-based exploits.
Malicious JavaScript code was served to a small percentage of php.net users between 22 and 24 October after two php.net servers were compromised. The infected machine have been withdrawn from service, with their workloads migrated to new, more secure servers.
In a statement about the breach, the PHP.net team reassured developers that neither the source tarball downloads nor the Git repository were modified or compromised.
The possibility of code depositories being tainted is the worst possible outcome of this kind of breach, so it comes as a relief that nothing that might lead to the distribution of backdoor code has resulted as a consequence of the hack.
SOURCE: theregister.co.uk
Most Commented Posts
2020 Cybersecurity Landscape: 100+ Experts’ Predictions
Cyber Security Predictions 2021: Experts’ Responses
Experts’ Responses: Cyber Security Predictions 2023
Celebrating Data Privacy Day – 28th January 2023
Data Privacy Protection Day (Thursday 28th) – Experts Comments
Most Active Commenters
Recent Comments
Meta’s fine over data privacy breaches underscores the critical challenges…
Hi, Thanks, that is really useful information. I do have…
“This is a very worrying attack that hit T-Mobile and…
“This latest cyberattack against T-Mobile may be smaller than previous…
“Genesis Market is a complex global criminal access marketplace. Buyers…