I.T. Vibe
Latest Business Communications Gaming General Security Technology Virus  
   Member Services
Login
Register
   General Services
Contact Us
Merchandise
Toolbar
RSS Feeds
Other Formats
   Site Search
 
Advanced Search
   News Alerts
Enter your email address to receive news alerts
 
View Privacy Policy
Unsubscribe
   Information
Latest Virus Alerts
Internet Threat Level
Internet Traffic Report
   Opinion Poll
Macs - Love Them or Hate Them? Place your votes now.
Love 'em
Hate 'em
Indifferent
Reader Comments: 0
View All Polls
Santy worm details released
Tuesday, December 21, 2004 at 23:15 by Rich Kavanagh
We reported earlier today on the outbreak of the Santy worm that infects web servers running popular bulletin board phpBB.

Sophos have published a detailed analysis of Perl/Santy-A which is spreading rapidly today, according to Internet watchers Netcraft.

Perl/Santy-A is a worm that exploits a vulnerability in the phpBB bulletin board software (for which an update has already been issued). The worm spreads to vulnerable bulletin boards on both Windows and Unix based platforms by conducting a Google search. Once the worm has spread to 3 or more servers it will attempt to overwrite all HTM*, PHP*, ASP*, SHTM*, JSP* and PHTM* files with a web page containing the following message:

This site is defaced!!!
NeverEverNoSanity WebWorm generation #

where # is the number of infection cycles the worm has been through to infect the compromised server.

Webmasters and server operators who run the phpBB software have been advised to upgrade to the most recent version of the software as soon as possible to ensure their security.

UPDATE: See some of the 1,450+ sites already attacked
 
No reader comments posted Reader Comments: 0 Contact Rich Kavanagh, the author of this article View a printer friendly version of this article Email this article to a friend RSS Feeds
Your Verification Number:

Please enter your Verification Number:

Related Articles:
Santy worm attacks thousands of phpBB boards
 
Recent Articles In Virus:
New alert over Eee Box desktop PCs
Microsoft and criminals could determine the future of the anti virus market
Experts crack Arhiveus virus Password
Top ten viruses reported in May 2006
Researchers find Symantec antivirus software has flaw
 
Other Recent Articles:
New white label system for the flatshare market arrives
Fwd4.Me provide a handy new URL shortening service
Is Nokia set to release a Nokia branded laptop?
Is the world of Internet blogging out of control?
EU authorities step into Phorm row
 

 © 2010 I.T. Vibe - All Rights Reserved - All Trademarks Recognised - Privacy Policy - Terms & Conditions