Home » Technology » Internet » Hackers Planted Backdoors Directly In PHP

Hackers Planted Backdoors Directly In PHP

3 years ago RS News
php

At the last minute, the PHP programming language prevented a backdoor from being channelled onto numerous web servers and developer PCs. Attackers had succeeded in smuggling malicious code into the official sources.

A corresponding warning by the PHP team was published over the weekend. Accordingly, the attackers probably used a vulnerability in the Git system of the PHP project to add their own source code. To prevent the other developers from noticing this, they faked the sender of their posts. At first glance, they looked like commits by the PHP inventor Rasmus Lerdorf or Nikita Popov, who is also part of the core team, with which only minor spelling errors should be corrected.

The attackers are betting that other programmers involved will not look closely at what should be corrected there. Fortunately, this hope was not fulfilled. And so someone discovered that two backdoors were being built into the PHP source code that could have consequences for millions of users.

Moved to GitHub

Because such supply chain attacks are very interesting for the perpetrators. In the present case, it would have been sufficient to accommodate the malicious code in PHP in order to gradually compromise an extremely large number of web servers. Because when updates were installed, the malicious code would have been installed at the same time. The attackers would then have been able to smuggle further code onto the affected server and execute it.

Read More: Microsoft Will Not Support Windows PHP Language

The attack on the PHP sources is probably due to a vulnerability in the Git installation itself and not to user accounts that were taken over. As a consequence of the matter, the PHP team decided to give up the operation of their own code management system and to host the entire project directly on GitHub in the future. The infiltrated backdoors have already been completely removed. In addition, the supporters are currently working through the past code submissions to ensure that no further vulnerabilities were built into PHP.

Tags: , ,

More Stories

The Ultimate Guide to PDF Combiner: Tools and Techniques

3 weeks ago Alexia Hope
YTMP3

Ytmp3: The Ultimate Tool for Converting YouTube Videos to Mp3

1 month ago Alexia Hope

Best Way To Remove counter.wmail-service.com 

2 months ago Yasir Zeb

Today’s Latest

Netflix Acquires New Customers And Shows Strong Growth

4 hours ago Yasir Zeb

Samsung Galaxy S25 Still Offers 8GB Standard Memory

1 day ago Research Snipers
vivo x100 ultra

Vivo X100 Ultra Comes With Powerful Imaging Capabilities

2 days ago Yasir Zeb

Apple Releases Second Beta of iOS 17.5 Testing Changes For EU

2 days ago Yasir Zeb

Netflix To Bring More Original Content Rather Than Films

3 days ago Yasir Zeb

Windows 10 Optional Update Brings May Patch

3 days ago Yasir Zeb
viral vectors

The Vital Role of Viral Vectors in Modern Medicine

1 week ago Alexia Hope

If Apple can’t solve this major challenge, it may give up on making foldable iPads

2 weeks ago Research Snipers

You can now create AI playlists with prompts on Spotify

2 weeks ago Research Snipers

Samsung is expanding its semiconductor manufacturing facility in the United States

2 weeks ago Research Snipers