PHP Site’s User Database Was Hacked In Recent Source Code Backdoor Attack


The maintainers of the PHP programming language have issued an update regarding the security incident that came to light late last month, stating that the actors may have gotten hold of a user database containing their passwords to make unauthorized changes to the repository.

“We no longer believe the server has been compromised. However, it is possible that the user database leaked,” Nikita Popov said in a message posted on its mailing list on April 6.

Read more…