Currently, users who try to visit php.net, the official website of the PHP scripting language, are warned that the website is serving malicious content.According to a report from Google’s Safe Browsing, suspicious content was found on the website on October 23.
“Malicious software includes 4 trojan(s). Malicious software is hosted on 4 domain(s), including cobbcountybankruptcylawyer.com/, stephaniemari.com/, northgadui.com/. 3 domain(s) appear to be functioning as intermediaries for distributing malware to visitors of this site, including stephaniemari.com/, northgadui.com/, satnavreviewed.co.uk/,” reads Google’s report.
Except for satnavreviewed.co.uk, which points to a Webfusion website, the rest appear to be parked GoDaddy domains.
It’s uncertain what has caused the site to become flagged. I’ve reached out to The PHP Group in hopes that we can find out what has happened. This blog will be updated when additional details become available.