Dark Reading

Bots Use SQL Injection Tool in New Web Attack

A little-known botnet has put a different spin on the recent wave of SQL injection attacks on thousands of Websites: It’s outfitting its bots with its own tool to launch SQL injection attacks on ...
CSOonline

What is SQL injection? How these attacks work and how to prevent them

Immortalized by “Little Bobby Drop Tables” in XKCD 327, SQL injection (SQLi) was first discovered in 1998, yet continues to plague web applications across the internet. Even the OWASP Top Ten lists ...
Dark Reading

New SQL Injection Attacks Exploit Adobe Flash Flaw

Mass SQL injection attack, take four: Yet another wave of SQL injection attacks is exploiting an Adobe Flash vulnerability that appears to be coming from the same series of attacks originating from ...
SiliconANGLE

New hacking tool that targets websites uses an easy smartphone interface

A new hacking tool operated via a smartphone to hijack websites is being praised on forums on a shady part of the Internet for its ease of use and ongoing support. It’s called the “Katyusha Scanner,” ...
Visual Studio Magazine

UPDATED: Microsoft Tool Helps Filter SQL Injection Attacks

Microsoft on Thursday released an improved security filter for its Internet Information Services (IIS) Web server that is designed to help thwart SQL-injection attacks. The free application, called ...
Visual Studio Magazine

IIS Tool Filters SQL-Injection Attacks

Microsoft’s UrlScan 3.0 is an improved security filter for Internet Information Services Web server designed to prevent SQL-injection attacks. Microsoft released an improved security filter for its ...
CSOonline

SQL injection Attacks Led to Heartland, Hannaford Breaches

This week’s disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web ...