xbiz world
xbiz premiere

New Worm Searches Google For Victims

CYBERSPACE — A new Internet worm discovered today uses popular search engine Google to find potential victims and has caused what antivirus firm Kaspersky calls an “epidemic.”

Net-Worm.Perl.Santy.a, which targets the phpBB online bulletin board software, apparently searches Google for “viewfiles.php” which reveals vulnerable versions of phpBB, then launches an attack on the site.

“Santy.a is something of a novelty,” Kaspersky said. “It creates a specially formulated Google search request which results in a list of sites running vulnerable versions of phpBB.”

Once the virus has located its targets and successfully infected a site, it searches for and overwrites files with .asp, .htm, .jsp, .php, .phtm, and .shtm extensions. In their place, the worm places files which contain the text, “This site is defaced!!! NeverEverNoSanity WebWorm generation.”

Original reports suggested that the worm was exploiting one of the major PHP vulnerabilities announced last week by the open-source group that distributes the programming language, but the Internet Storm Center recently stated that the exploit lies in the “highlight” feature in versions of phpBB earlier than 2.0.11.

The “highlight” exploit centers around an SQL injection bug that allows attackers to arbitrarily execute code.

A search using Microsoft’s search engine for text strings contained in infected files turned up approximately 40,000 sites at 11 a.m. on Tuesday. The same search conducted at 12:30 p.m. revealed 133,780 hits.

“Santy.a is spreading rapidly and has caused an epidemic,” Kaspersky stated. “However, this does not directly affect users. Although the worm infects websites, it does not infect computers used to view those sites.”

Copyright © 2026 Adnet Media. All Rights Reserved. XBIZ is a trademark of Adnet Media.
Reproduction in whole or in part in any form or medium without express written permission is prohibited.

More News

2026 XBIZ LA Conference Schedule Announced

XBIZ is pleased to announce the release of the full show schedule for the XBIZ 2026 conference, set to take place Jan. 12-15 at the Kimpton Everly Hotel in Hollywood.

Needemand Joins ASACP as Corporate Sponsor

French startup company Needemand has signed on as the latest corporate sponsor for Association of Sites Advocating Child Protection (ASACP).

Utah State Legislator Proposes New 'Porn Tax'

A Utah state senator introduced a bill on Monday that would impose a 7% tax on the gross receipts of adult websites doing business in that state, plus require adult sites to pay an annual $500 fee.

Carlotta Champagne is LoyalFans' 'Featured Creator' for January

LoyalFans has named Carlotta Champagne as its Featured Creator for January.

Pineapple Support Relaunches Site

Pineapple Support has updated and relaunched its website.

Arcom-Targeted Sites Implement Age Verification in France

Five high-traffic adult websites based outside of France have implemented age verification as required under the nation’s Security and Regulation of the Digital Space (SREN) law, after receiving warnings from French media regulator Arcom.

Goddess Lilith Launches 'Adultpreneurs' Networking Site

Goddess Lilith has launched Adultpreneurs, a new community and networking site.

Adult Shoot Location Marketplace 'FckSpace' Launches

FckSpace, a new platform aimed at simplifying location sourcing for adult productions, is now live

Florida Attorney General Dismisses AV Suit Against Segpay

The Florida attorney general’s office on Monday agreed to dismiss claims against payment processor Segpay in a lawsuit over alleged noncompliance with the state’s age verification law.

FTC Weighs Reboot of 'Click to Cancel' Rulemaking Process

The Federal Trade Commission has invited public comments on a petition to renew trade regulation rulemaking concerning negative option plans, after a federal court previously vacated a “click-to-cancel” rule aimed at making it easier for consumers to cancel online subscriptions.

Show More