"Storm bot attacks threatened, but new Linux tools and updates
kept storm bots and most other IT security hacks at bay in 2007.
That said, new problems--such as security risks in virtual
machines--cropped up last year. Here's my round-up of the big Linux
security events, software releases and controversies that cropped
up in 2007.
"PHP security issues stayed on the radar in 2007, triggered by
the resignation of Stefan Esser from the PHP Security Response
Team. Esser developed the PHP hardening tool Suhosin and often
engaged in fiery debate with the broader PHP community. In March,
Esser's 'Month of PHP' security bugs revealed 46 bugs in PHP, Zend
and other elements of the framework..."