The Santy worm continues its expansion with variants attacking more Web sites.The flaw exploited by the most recent versions of the worm such as Santy.C or Santy.E is more general than the original, and can occur anywhere a site designer has left the door open for the inclusion of arbitrary files into PHP scripts, reports IDG News Service.The worm is taking advantage of search engines, including Google, Yahoo and AOL to identify exploitable Web pages, IDG News Service reports. Jonathan Singer, research associate for security solutions and services with The Yankee Group, advises IT managers to look to security providers such as Symantec to find appropriate responses. “It looks like the antivirus companies have put up their warnings about (Santy),” Singer said. “At this point, it’s up to the end user to follow the recommended steps from their security providers.” Technology Industry