Sql Injection
69 Stories

Researchers to offer tool for hacking Oracle DBes

News During their upcoming presentation at Black Hat and Defcon hacker conferences, security experts will release tool that can be used to break into Oracle databases.

Friday, July 24 2009 12:01 PM

Tags: Business applications, Databases, Vulnerability, Database, Tool, SQL, SQL Injection, e-mail, hacking, Oracle Corp.

Web-based malware infections rise rapidly, stats show

News Nearly 6 million Web pages are infected with malware, double previous estimates earlier in the year, according to Dasient.

Wednesday, October 28 2009 11:04 AM

Tags: Network security, Security Management, Security applications/tools, Google Inc., Malware, Twitter Inc., Dasient, SQL, Infection, Web Application

Businesses overlooking biggest security risks

News Companies are looking in the wrong places to defend against online attacks, according to security training organization Sans.

Wednesday, September 16 2009 02:46 AM

Tags: PC security, Data security, Spam and phishing, Security, Phishing, Training, Vulnerability, Attack, Web Application, Programming

The Bobby Tables guide to SQL injection

Techguide Avoiding SQL injection vulnerabilities is much easier than you might think. XKCD inspired a simple tutorial.

Monday, October 05 2009 07:45 PM

Tags: Network security, Security Management, Security implementation/standards, Data security, Allaire ColdFusion, SQL statement, Vulnerability, CompTIA, SQL, content management system

Three men indicted in largest US data breach

News Florida man accused of stealing credit card data from TJX is among those named in breach involving Heartland, 7-Eleven, Hannaford Brothers and others.

Tuesday, August 18 2009 09:12 AM

Tags: Authentication and encryption, PC security, Data security, Fraud, 7-Eleven Inc., Identity Theft, SQL, computer, SQL Injection, debit card

Never use dynamic variable names

Techguide How to dynamically name variables is a common subject of programming questions. That's a great way to create security problems, though.

Monday, November 02 2009 01:49 PM

Tags: Security Management, Protocols and platforms, Array, Ruby, Expression, Variable, Security, Microsoft Corp., CompTIA, SQL

Audit: No customer data exposed in Kaspersky breach

News Database security expert David Litchfield analyzes attack on security firm Web site and finds no sensitive data was accessed.

Sunday, February 15 2009 09:12 PM

Tags: Data security, Network security, Customer Data, Security, Database, Attack, Bitdefender, SQL, Kaspersky, Attacker

Hacker site claims breach of third security firm Web site in a week

News HackersBlog breaches Web site of F-Secure in string of attacks on security firm sites.

Thursday, February 12 2009 07:22 AM

Tags: Hacking, Web sites, Security, Site, F-Secure Corp., Database, Bitdefender, SQL, SQL Injection, security company

Report: Turkish hackers breached US Army servers

News Investigators believe hackers used an SQL injection attack to break into U.S. Army servers and redirect visitors to other sites, according to report.

Monday, June 01 2009 10:31 AM

Tags: PC security, Data security, Network security, Security Management, SQL, Server, U.S. Army, SQL Injection, Turkey, Oklahoma

F-Secure provides details on Web site breach

News Security firm says bug in Web application led to hole hackers used to breach Web site.

Friday, February 13 2009 09:06 AM

Tags: Hacking, PC security, Firewalls, IDS (Intrusion Detection Systems), Malware, F-Secure Corp., Database, Attack, SQL, Server

HP offers free security tool for Flash developers

News Some 35 percent of nearly 4,000 Web apps developed with the Flash platform violate Adobe's security best practices, according to Hewlett-Packard.

Tuesday, March 24 2009 12:01 PM

Tags: Security, Adobe Systems Inc., Hewlett-Packard Co., Macromedia Flash Player, Microsoft Corp., IBM Corp., Tool, Developer, computer, security tool

Puerto Rico sites redirected in DNS attack

News Visitors to Google.pr, Microsoft.com.pr, Yahoo.com.pr, and others saw defaced sites instead of the legitimate sites after an attack on the domain name system in Puerto Rico last weekend.

Tuesday, April 28 2009 09:46 AM

Tags: Network security, Hacking, SSL/TLS, Spam and phishing, Phishing, PayPal, SSL, Site, Domain Name, Attack

IBM report: Vulnerabilities still going unpatched

News Many disclosed vulnerabilities are still unpatched years later, notes report, while Microsoft is vendor with the highest percentage of disclosed holes.

Tuesday, February 03 2009 06:29 AM

Tags: PC security, Security Management, Data security, Network security, IBM Corp., Malware, Report, Vulnerability, online banking, operating system

Firewall MySQL with GreenSQL

Techguide GreenSQL is a "firewall" for MySQL databases that could help protect your database from SQL injection vulnerabilities.

Sunday, February 15 2009 06:48 PM

Tags: Open source, Firewalls, Database, Unix, SQL, Web Application, GreenSQL, SQL Injection, Linux Distribution, Linux

Vendor warns of 'Chinese' Web site attacks

News Security vendor ScanSafe has warned IT professionals of a fresh wave of SQL injection attacks.

Wednesday, May 21 2008 12:20 AM

Tags: Network security, Database management, Microsoft SQL Server, ScanSafe, Security, Yahoo! Inc., Attack, Password, Stock, SQL Injection