CSOonline

PHP backdoor attempt shows need for better code authenticity verification

Attackers were able to place malicious code in the PHP central code repository by impersonating key developers, forcing changes to the PHP Group's infrastructure. Unknown attackers managed to break ...
ZDNet

Official PHP Git server targeted in attempt to bury malware in code base

The official PHP Git server has been compromised in a potential attempt to plant malware in the code base of the PHP project. On Sunday, PHP programming language developer and maintainer Nikita Popov ...
Threat Post

Severe PHP Exploit Threatens WordPress Sites with Remote Code Execution

The issue impacts several content management systems, including Typo3 and WordPress, as well as widely-used PDF generation library TCPDF. Researchers have created a proof-of-concept exploit that would ...