Computerwoche Online

SQL injection attacks led to massive data breaches

This week's disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web ...
Dark Reading

A Weapon Against SQL Injection

The single most common database security inquiry I get is, "What's this whole stored procedure parameter thing, and how does it help with SQL injection?"With the Albert Gonzales hearings under way, ...
Infosecurity Magazine

UK NCSC Raises Alarms Over Prompt Injection Attacks

The UK’s National Cyber Security Centre has warned of the dangers of comparing prompt injection to SQL injection ...
GIGAZINE

It was pointed out that airport and cockpit security could be breached by SQL injection attacks

The Transportation Security Administration (TSA) has a program called 'KCM (Known Crewmember)' that allows pilots and flight attendants to pass security checks even when they are off. Similarly, there ...
GIGAZINE

SQL injection vulnerability in PostgreSQL went undiscovered for over nine years and was used to break into the US Treasury Department

On December 30, 2024, a 'Chinese government-sponsored advanced persistent threat actor' breached a system managing confidential data for the U.S. Treasury Department. It was discovered that the ...
InfoWorld

Update: Mass SQL injection attack targets Chinese Web sites

Web sites across China and Taiwan are being hit by a mass SQL injection attack that has implanted malware in thousands of Web sites, according to a security company in Taiwan. First detected on May 13 ...
Computer Weekly

NCSC warns of confusion over true nature of AI prompt injection

Malicious prompt injections to manipulate generative artificial intelligence (GenAI) large language models (LLMs) are being ...