01-20-2006, 01:04 PM
Quote:The ISP thought he had wiped out the PayPal phisher. But the devil popped back up at another URL using the same exploit to control the victim's phpBB bulletin board system. That triggered a nasty battle between the ISP and his domain name registrar that shut him down for at least 18 hours...
SANS Handlers started picking up some activity back in November. Incidents were reported where bots were again using Google to find exploitable servers running phpBB versions 2.0.10 and under. As our ISP discovered, there are a number of phpBB exploits targeting phpBB versions as late as 2.0.17.
full article: http://www.emailbattles.com/archive/batt...fbgdcb_jd/