Unknown attackers managed to break into the central code repository of the PHP project and add malicious code with the intention to insert a backdoor into the runtime that powers most websites on the internet. The hackers impersonated two high-profile PHP developers, but the code commits were not very subtle and were detected within hours when other developers reviewed them.
[ Learn how to track and secure open source in your enterprise. | Get the latest from CSO by signing up for our newsletters. ]The incident didn't have a widespread impact like the recent SolarWinds compromise or other supply chain attacks where backdoors made it into stable releases of software products and were pushed out to regular users. However, it made the PHP Group, the organization that maintains PHP, reconsider how its code infrastructure is run.
To read this article in full, please click here
Support the originator by clicking the read the rest link below.
