DV Hardware - bringing you the hottest news about processors, graphics cards, Intel, AMD, NVIDIA, hardware and technology!
   Home | News submit | News Archives | Reviews | Articles | Howto's | Advertise
DarkVision Hardware - Daily tech news
December 3, 2020 
Main Menu
News archives

Who's Online
There are currently 149 people online.


Latest Reviews
Ewin Racing Flash gaming chair
Arctic BioniX F120 and F140 fans
Jaybird Freedom 2 wireless sport headphones
Ewin Racing Champion gaming chair
Zowie P-TF Rough mousepad
Zowie FK mouse
BitFenix Ronin case
Ozone Rage ST headset

Follow us

Anti-Santy worms protects vulnerable phpBB forums against Santy

Posted on Friday, December 31 2004 @ 18:52:04 CET by

Anti virus firm F-Secure warns that a new worm is spreading by using the Google search engine which seems to combat the Santy worm. The Sany worm defaces vulnerable phpBB forums by searching Google.

The Anti-Santy worm works similar; it uses Google to find phpBB forums infected by the original Santy worm, infects the sites and then attempts to make the sites more secure by installing a patch.

The anti-virus company says that this type of worms may be regarded as positive but that they still have drawbacks. They cause a lot of additional traffic on the internet for instance.
"I can't comment how effective it is in fixing the sites," said Hyppönen. "If a site is infected, the worm causes a huge amount of traffic and slows down the site. I don't think it's possible to write a beneficial worm."

Sites that have been attacked by the anti-Santy worm are defaced with the words: "viewtopic.php secured by Anti-Santy-Worm V4. Your site is a bit safer, but upgrade to >= 2.0.11."

Hyppönen said he has seen two versions of the defacement page, which lead to two different IP addresses. Both IP addresses resolve to Argentina, which suggest that that is where the anti-Santy worm originated.
It is said that Santy has attacked more than 40,000 vulnerable phpBB forums.

Forums vulnerable for this worm are unpatched versionf of phpBB 2.0.10 and lower. A solution for this exploit can be found on this phpBB site and an updated version of phpBB has already been available for a few weeks.

More info at Cnet



DV Hardware - Privacy statement
All logos and trademarks are property of their respective owner.
The comments are property of their posters, all the rest © 2002-2020 DM Media Group bvba