There are new available articles, click to refresh the page.

Before yesterdayNaked Security

Naked Security
PHP Packagist supply chain poisoned by hacker “looking for a job”
May 5^th 2023 at 16:59

PHP Packagist supply chain poisoned by hacker “looking for a job”

By Paul Ducklin

I pwned you! Gizza job! You know it makes sense!

Related tags
May 5^th 2023 at 16:59

Naked Security
SHA-3 code execution bug patched in PHP – check your version!
November 1^st 2022 at 14:09

SHA-3 code execution bug patched in PHP – check your version!

By Paul Ducklin

As everyone waits for news of a bug in OpenSSL, here's a reminder that other cryptographic code in your life may also need patching!

Related tags
November 1^st 2022 at 14:09

Naked Security
Poisoned Python and PHP packages purloin passwords for AWS access
May 24^th 2022 at 23:04

Poisoned Python and PHP packages purloin passwords for AWS access

By Paul Ducklin

More supply chain trouble - this time with clear examples so you can learn how to spot this stuff yourself.

Related tags
May 24^th 2022 at 23:04

Naked Security
Irony alert! PHP fixes security flaw in input validation code
February 18^th 2022 at 17:59

Irony alert! PHP fixes security flaw in input validation code

By Paul Ducklin

What's wrong with this sequence? 1. Step into the road 2. Check if it's safe 3. Keep on walki...

Related tags
February 18^th 2022 at 17:59