Hackers abuse PHP setting to inject malicious code into websites

Attackers have begun to abuse a special PHP configuration directive in order to insert malicious code into websites hosted on dedicated and VPS (virtual private servers) that have been compromised. The technique was identified by Web security firm Sucuri Security while investigating several infected websites that had a particular malicious iframe injected into their pages.

Source: http://www.infoworld.com/d/security/hackers-abuse-php-setting-inject-malicious-code-websites-182586

birmingham news unclaimed money discrete