Someone tell the guys at Binary Star that their website has been defaced. [V] http://www.binary-star.com/
"This site is defaced!!!
NeverEverNoSanity WebWorm generation 6."
I can't find anything about this NeverEverNoSanity WebWorm, but it seems to have attacked http://www.womeningames.org.au as well [:P]
"NeverEverNoSanity WebWorm generation 14"
http://www.computerworld.com/securitytopics/security/virus/story/0,1080…
DECEMBER 21, 2004 (IDG NEWS SERVICE) - Antivirus companies are warning Internet users about a new, fast-spreading worm that infects Web servers running a popular package of online bulletin board software and uses the Google search engine to find vulnerable servers to infect.
The worm, dubbed Santy.A, uses a vulnerability in a popular free software package called phpBB to spread across the Internet, infecting computer servers that host online bulletin boards and defacing those sites with the words "This site is defaced!!! NeverEverNoSanity WebWorm."
Yeh, just read about it on [url="http://it.slashdot.org/it/04/12/21/2135235.shtml?tid=220&tid=217&tid=169"]Slashdot[/url]. Some guy wrote:
"I got hit HARD! :( This worm is unbelieveably evil.
What it does is search all volumes on the server for files with the .asp .php .shtml .html .htm extentions and overwrites them with the 264 byte file that simply states "Web site defaced"
Ouch... [:0]
[url="http://www.citizen-zero.com/phpbb2/viewforum.php?f=1"]Citizen Zero forum[/url] down due to the same vulnerability..
GAH! Someone please tell the admin that the Women in games forum has been defaced (again) [:(] http://www.womeningames.org.au/forum
Really gotta keep patching phpBB as soon as those updates come out..
That sux!