Google’s safe browsing technology has blocked the access to PHP.net after detecting potentially harmful links across its web pages that helps in injecting malicious software.
Following the detection, the company has started displaying messages that include reasons for blocking the access when a user tries to access the website.
According to the company, the php.net systems team have audited every server operated by php.net and have found that two servers were compromised including the server which hosted the www.php.net, static.php.net and git.php.net domains.
Previously, the company had suspected attacks with JavaScript malware and the server hosting bugs.php.net.
PHP said in a post that all affected services have been migrated from those servers.
"We have verified that our Git repository was not compromised, and it remains in read only mode as services are brought back up in full," the post read.
The company has also cancelled the private key of the php.net SSL certificate, following the doubts that the attackers might have accessed it.
The company plans to get new certificate and to restore access to php.net sites that need SSL including bugs.php.net and wiki.php.net in the next few hours.
Additionally, the company will reset php.net users’ passwords over the concern of attack.
