in

Using assert() to Execute Malware in PHP 7 Environments

[ad_1]

Using assert() to Execute Malware in PHP 7 Environments

Initially released December 2015, PHP 7 introduced a multitude of performance and security improvements. Approximately 43.7% of websites across the web currently use PHP 7.x, making it an incredibly popular scripting language — which is likely why attackers are creating malware to target environments which leverage it.

During a recent investigation, our team stumbled across some malicious code which is used to inject a .user.ini file into a PHP 7 environment and add zend.assertions = 1.

Continue reading Using assert() to Execute Malware in PHP 7 Environments at Sucuri Blog.

[ad_2]

Source link

What do you think?

Participant

Written by Krasimir Konov

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

Loading…

0

Porto | Multipurpose & WooCommerce Theme

Free event: Learn from top consultants during Post Status Live: Client Work