Filter Results
Click on a filter below to refine your search.
Your search for sql injection returned 138 results.
Hint: If you don't want the words you enter to be searched for separately, use quotation marks to find people or exact phrases. See our Search Help section for more hints.
News
Two of NASA's sites were accessed by an individual, apparently claiming to demonstrate they were susceptible to SQL injection.
December 07, 2009
News
The mass SQL injection attacks that gained attention earlier this week are continuing, with some 210,000 pages infected so far.
August 27, 2009
News
Researchers are not sure how many websites have been compromised but said new Asprox botnet attacks are underway.
October 06, 2009
News
Another round of IFRAME infections has compromised tens of thousands of legitimate websites.
August 24, 2009
Brief
An SQL injection attack that began in late November has compromised more than 125,000 web pages, researchers at web security provider ScanSafe, recently acquired by Cisco, said Wednesday in a blog post. The sites have been injected with an IFRAME that loads malicious content from a known...
December 10, 2009
Brief
A Romanian hacker using the alias "Unu" claims to have found a hole in an Intel website. The hacker demonstrated in late December an SQL injection vulnerability on the Intel "Channel Webinars" site, which is used to run online registrations for channel partner events. The site is currently...
January 06, 2010
News
Yahoo has fixed a dangerous blind SQL vulnerability its career website that could have allowed for the theft of personal data belonging to job hunters.
November 16, 2009
News
Researchers at a security company say they have discovered a vulnerability in Microsoft's SQL Server, but the software giant disputes the claim.
September 02, 2009
News
During the second half of 2009, attackers shifted their strategy away from mass-injection campaigns and instead focused on launching targeted attacks to infect high-profile websites, Websense found in a new report.
February 05, 2010
News
A group of computer hackers based in Turkey breached the sites of two U.S. Army facilities, leveraging SQL injection attacks.
June 01, 2009
Webcast
SQL injection attacks, malfeasance by insiders and regulatory requirements are driving organizations
to find new ways to secure their critical databases and achieve compliance with SOX, PCI-DSS, NIST 800-53 and data protection laws.
August 13, 2009
Product Review
XyberShield combats web application attacks, such as SQL injection or cross-site scripting, by using a form of behavior profiling called XyberFrames.
March 01, 2010
Brief
Cisco has released software updates to address multiple flaws in its Unified MeetingPlace audio, video and web conferencing solution, according to an advisory released Wednesday. The vulnerabilities, which include an SQL injection bug, could result in information disclosure, denial of service, privilege escalation and unauthorized account creation. Versions...
January 28, 2010
Brief
HackersBlog, a Romanian website that gained notoriety for recently exposing SQL injection vulnerabilities in websites of security vendors such as Symantec, Kaspersky Lab, F-Secure and BitDefender, is shutting down. A post on the website said the operation had "gotten to that point where most of the team members...
March 24, 2009
News
A new threat dubbed "Nine-Ball" has compromised up to 40,000 legitimate websites that are now infecting users with an information-stealing trojan, according to security vendor Websense.
June 17, 2009
News
Two reports released this week confirmed the tidal shift in the type of websites into which cybercriminals are injecting malware.
May 18, 2009
Product Review
The Safend Data Protection Suite is an encryption (and endpoint protection) software solution that consists of a centralized management console, which runs on IIS and .NET, a Microsoft SQL Server backend, and client software components.
July 01, 2009
News
A mass injection attack similar but unrelated to Gumblar has infected more than 40,000 websites, according to new research from Websense.
June 01, 2009
Brief
Microsoft on Tuesday released a free tool to help application developers better secure their programs. The SDL (Secure Development Lifecycle) Process Template for Visual Studio Team System provides a framework -- including auditable requirements -- for building security into applications. The offering complements previous Microsoft SDL releases: Optimization Model, Pro...
May 19, 2009
Feature
Clampi (aka Ligats or Ilomo) is an information theft botnet. The malcode is a multicomponent tool that injects code into running processes, alters the PC's configuration and, once established, begins to harvest and send sensitive information from the PC to its handlers.
October 08, 2009