Back in January, we covered the news that Ubiquiti had a breach of undisclosed severity. One reader pointed out the compromise of a handful of devices as potentially related. With no similar reports ...

Unknown attackers compromised the official PHP Git server and planted a backdoor in the source code of the programming language, potentially putting websites using the tainted code at risk of complete ...

The server for the web-application scripting language was compromised on Sunday. The PHP project on Sunday announced that attackers were able to gain access to its main Git server, uploading two ...

A new report out today from Symantec, a division of Broadcom Inc., is warning of a new sophisticated backdoor threat that has been spotted in the wild targeting a university in Taiwan. Dubbed Backdoor ...

Security researchers have discovered a backdoor in a premium WordPress plugin designed as a complete management solution for schools. The malicious code enables a threat actor to execute PHP code ...

Nikita Popov, one of the developers of PHP, announced on March 28, 2021 that malicious source code had been inserted into PHP. In it, Popov said, 'Yesterday, under the names of Ladov and I, two ...

A cyber-criminal has hidden the code for a PHP backdoor inside the source code of a WordPress plugin masquerading as a security tool named "X-WP-SPAM-SHIELD-PRO." The attacker was obviously trying to ...

Attackers have breached the official PHP Git server and infected its code base, PHP developers and maintainers report. They have decided to make GitHub the permanent source for PHP repositories going ...

In context: PHP is an open-source scripting language web developers embed in HTML to manage dynamic content, databases, and other everyday tasks. The PHP project maintains its repositories on its own ...

Two malicious changes were made to the development branch of the upcoming PHP v8.1 in an attempt to add a backdoor to any website that runs this tainted version of the popular web development language ...