A virus that infects PHPbb forums hit over 38,000 sites today. Yes, Legit Reviews uses PHPbb and was using version 2.0.10 today. We lucked out and didn't get hit with the virus. I updated to version 2.0.11 and all should be good for now.
A new worm is playing havoc with certain Web sites by exploiting a security hole in PHPbb, a popular program used to create Internet forums, several security firms warned Tuesday.
Russian-based Kaspersky Lab was among the first to report sightings of Net.Worm.Perl.Santy-A, labeling it a severe risk. According to the firm, Santy-A is spreading rapidly. "However, this does not directly affect end users," the firm said in a statement. "Although the worm infects Web sites, it does not infect computers used to view these sites."
Sounds like someone had some late night fun! Look at how fast this worm is spreading..
Reston, Va.-based iDefense reiterated that advice and reported more than 38,000 sites had been compromised since this morning. Ken Dunham, the company's director of malicious code, said the worm may be exploiting a recent SQL injection vulnerability for phpBB 2.0.10 reported on Nov. 29. "If that is the case, this worm was rapidly authored and deployed, just a few weeks following the vulnerability announcement," he said in a prepared statement.
Read the article
here for more information. It's 1am LR is now patched and I am off to bed again.