Malicious JS Lifecycle Hooks Found Hiding Inside PHP Composer Packages

exakat@lemmy.world · 15 days ago

SavinDWhales@lemmy.world · 13 days ago

That website is malicious. First thing after loading: allow notifications?

Couldn’t get past the cookie banner, so…

exakat@lemmy.world · 13 days ago

LurkingLuddite@piefed.social · 15 days ago

I mean if you’re using php in 2026…

greyscale · 15 days ago

🤡👞

LurkingLuddite@piefed.social · 14 days ago

I didn’t specify why. Interesting how defensive you clowns get, though glad to see you didn’t forget your makeup.

greyscale · 14 days ago

Half the internet runs on PHP bro. It pays a lot of rent and mortgages.

The toolchain is less hellish than JS for sure.

Its a pragmatic choice and its very easy to disregard you and opinions when its indistinguishable from 2005 skiddy talk.