Chinese cybersecurity researchers have uncovered a PHP backdoor, Glutton, believed to be from persistent threat goup Winnti. The malware has been found in China, the US, Cambodia, Pakistan and South Africa, undetected for over a year. The modular code operates within PHP or PHP-FPM optimised process handling on web servers, eliminating digital footprints and avoiding detection. Glutton can be used to extract data or inject malicious code into frequently used PHP frameworks.
Nebraska becomes first state to sue Change Healthcare over data breach
Nebraska is suing Change Healthcare and UnitedHealth Group over a February data breach that affected 100 million Americans and 575,000 local residents. The state’s Attorney