The latest security incident involves a security flaw in a file called viewtopic.php, which was attacked by the Santy worm. UPDATE: Our initial report suggested the security hole in phpBB 2.0.15 was the same flaw found in version 2.0.11 and targeted by the Santy worm. The latest flaw is actually in a different section of the viewtopic.php code, according to Ashley Pinner of the phpBB support team. A fix is included in a new update of phpBB, which has had persistent security problems in recent months. phpBB is among the web’s most popular bulletin board programs, with more than 194,000 registered members of its user forum.