http://news.zdnet.com/2100-1009_22-5...=zdfd.newsfeed

Apparently, at this time, this only affects the boards not the users (according to Kapersky)

http://www.viruslist.com/en/alerts?alertid=156678925

The worm creates a specially formulated Google search request. This request will give a list of sites running vulnerable versions of phpBB. The worm then sends a request to all sites found, which contains an exploit for the vulnerability. When the server under attack processes the exploit, the worm penetrates the site and gains control. This process is then repeated.
http://www.viruslist.com/en/viruses/...?virusid=68388