Threat Post

How to Own a Database With SQL Injection

SQL injection is the most common penetration technique employed by hackers to steal valuable information from corporate databases. Yet, as widespread as this method of attack is, a seemingly infinite ...
Ars Technica

Overcoming rudimentary SQL injection protection

I'm in the process of documenting the many ways in which an application is terrible. One of those ways is that it's vulnerable to SQL injection. It's not completely open, but you can manipulate a few ...
Threat Post

Lessons Learned From the LizaMoon SQL Injection Attack

Last week, a large scale SQL Injection attack dubbed LizaMoon, referencing one of the domain names used in the attack, surfaced. This attack targets websites by injecting code that redirects visitors ...
Tech Zone 360

Ponemon Institute Study Finds Organizations Remain Very Vulnerable to SQL Injection Attacks

In case you were not aware, although it appears many if not most IT security professionals know this up close and personal, SQL injections are a vector of vulnerability those with malicious intent ...
Computerworld

Glastopf Web application honeypot gets SQL injection emulation capability

The Honeynet Project, a non-profit organization that develops open-source security research tools, has created a component for the Glastopf Web application honeypot software that can emulate ...
InfoWorld

Joomla receives patches for zero-day SQL injection vulnerability

An exploit for the SQL injection vulnerability has been publicly available for over a month, said security researchers from Sucuri Recently released security updates for the popular Joomla CMS ...