Developers Avert Major Supply Chain Attack Exploiting Compromised PHP Source Code
Timely intervention by PHP developers warded off a potentially massive software supply chain attack against websites using PHP. Attackers pushed in two malicious commits within PHP source code that could lead to remote website takeover through the compromise of the PHP Git server.