Barney's Blog

Blog archive

PHP Hole Exploited by Hackers

Hackers really have no conscience. Why else would they attack PHP? What did PHP ever do to them? But yet, that's exactly what they did. They found flaws in the revered Web scripting language and gone right after them.

One flaw lets these creepbags install their own malware (probably just a slight rework of something some other creepbag wrote -- which was, itself, just a rework of something some other creepbag found and fiddled with) or rip off your source code.

These jerks are out and about with this attack, as Trustwave SpiderLabs found direct evidence in its honeypot earlier this week.

The PHP Group Web site has info on how you can to see if your Web site is vulnerable and has already released emergency fixes.

Posted by Doug Barney on 05/11/2012 at 1:19 PM


Featured

  • How To Improve Windows 10's Sound and Video Quality

    Windows 10 comes with built-in tools that can help users get the most out of their sound and video hardware.

  • Microsoft Offers More 'Solorigate' Advice Using Microsoft 365 Defender Tools

    Microsoft issued yet another article with advice on how to use its Microsoft 365 Defender suite of tools to protect against "Solorigate" advanced persistent threat types of attacks in a Thursday announcement.

  • Microsoft FastTrack Support Extended to Microsoft 365 Defender Solutions

    The Microsoft FastTrack support program has been extended to Microsoft 365 Defender products for certain qualified subscribers, Microsoft indicated this week.

  • Microsoft 365 File-Size Support Expanding to 250GB

    Microsoft 365 users will be getting expanded file-size support, allowing files to be shared that are 250GB maximum in size, per a Microsoft announcement this week.

comments powered by Disqus