ZDNet

GitHub security alerts now support PHP projects

Since the Dependency Graph feature is intertwined with the Security Alerts (Vulnerability Alerts) feature, this also means GitHub users will also be eligible to receive automatic security alerts for ...
Bleeping Computer

PHP's Git server hacked to add backdoors to PHP source code

In the latest software supply chain attack, the official PHP Git repository was hacked and the code base tampered with. Yesterday, two malicious commits were pushed to the php-src Git repository ...
Threat Post

PHP Infiltrated with Backdoor Malware

The server for the web-application scripting language was compromised on Sunday. The PHP project on Sunday announced that attackers were able to gain access to its main Git server, uploading two ...
ZDNet

Official PHP Git server targeted in attempt to bury malware in code base

The official PHP Git server has been compromised in a potential attempt to plant malware in the code base of the PHP project. On Sunday, PHP programming language developer and maintainer Nikita Popov ...
Dark Reading

Attackers Target PHP Git Server to Backdoor Source Code

Attackers have breached the official PHP Git server and infected its code base, PHP developers and maintainers report. They have decided to make GitHub the permanent source for PHP repositories going ...
CSOonline

PHP backdoor attempt shows need for better code authenticity verification

Attackers were able to place malicious code in the PHP central code repository by impersonating key developers, forcing changes to the PHP Group's infrastructure. Unknown attackers managed to break ...
IT News For Australia Business

PHP suffers supply-chain attack

The maintainers of the popular PHP: HyperText PreProcessor scripting language have moved their code repository from a self-hosted git instance to Microsoft-owned Github, after a security scare that ...