Santy
From Wikipedia, the free encyclopedia
- For the traditional folklore character, see Santa Claus.
Santy is a computer worm created in Perl to exploit a vulnerability in phpBB software which used Google to spread across the internet.
Within 24 hours of its release on 20 December 2004, a large number of websites (estimated by some at 30,000 to 40,000) were attacked by Santy. The worm caused writable files (of formats such as .php and .html) on the infected server to display the message "This site is defaced!!! This site is defaced!!! NeverEverNoSanity WebWorm generation X", where X is a number representing the generation of the worm.
There have been variants of the worm, some which use alternative search engines after Google blocked queries from the Santy worm, and an anti-Santy anti-worm which attempts to patch vulnerable installations [1].
The phpBB Group had released a patch for the vulnerability a month before the attacks, in phpBB 2.0.11.