Global CyberSecurity

Using assert() to Execute Malware in PHP 7 Environments

By OTC 09/01/2020

Post Views: 934

Published on 09/01/2020 – Last Updated on 09/01/2020 by OTC

Initially released December 2015, PHP 7 introduced a multitude of performance and security improvements. Approximately 43.7% of websites across the web currently use PHP 7.x, making it an incredibly popular scripting language — which is likely why attackers are creating malware to target environments which leverage it.

During a recent investigation, our team stumbled across some malicious code which is used to inject a .user.ini file into a PHP 7 environment and add zend.assertions = 1.

Continue reading Using assert() to Execute Malware in PHP 7 Environments at Sucuri Blog.

Comments

Comments are closed.

More in Global CyberSecurity

Global CyberSecurity

Using assert() to Execute Malware in PHP 7 Environments

Page Authority 2.0 Is Coming This Month: What’s Changing and Why

NATO Mine Countermeasures Group-1 participates in Sandy Coast exercise

Comments

More in Global CyberSecurity

PHP Reinfector and Backdoor Malware Target WordPress Sites

Malware Steals Account Credentials

2024 Credit Card Theft Season Arrives

Cyber-Space

Simple Include Statement Hides Casino Spam

PHP Reinfector and Backdoor Malware Target WordPress Sites

Malware Steals Account Credentials

PHMC GPE LLC

Social EYK

Economy & Finance

Page Authority 2.0 Is Coming This Month: What’s Changing and Why

NATO Mine Countermeasures Group-1 participates in Sandy Coast exercise

You may also like

Comments

More in Global CyberSecurity

Cyber-Space

PHMC GPE LLC

Social EYK