Categories
- 911
- Ad Injection
- Advertising
- Adwords
- Affiliate Marketing
- Annoying Websites
- AOL
- Apple
- Artificial Intelligence
- Astronomy
- Attacks
- Blogging
- Branding Mistakes
- Cartoons
- Christmas
- Click Fraud
- Comic Books
- ContentAds
- Contextual Advertising
- Costume Party Ideas
- Coupons
- Creamaid
- Current Events
- Dave Stevens
- Dell
- Digg
- Domain Registrars
- E-voting
- eBay
- Election Fraud
- Energy
- Entertainment
- Family
- Funny
- Gadgets
- Goldencan
- GoToMyPC.com
- Halloween
- Halloween Costumes
- HBO
- Holidays
- HP Computers
- Incorporation
- Instant Messaging
- Intel
- Internet Access
- iTunes
- iTV
- Layoffs
- Legos
- Life
- Linking Strategies
- Microsoft
- Mistakes
- Monitoring Software
- Movies
- MSN
- MySpace
- Nasa
- Netscape
- Office 2.0
- Online Gaming
- Online Marketing
- Online Predators
- Paid Blogging
- Party Supplies
- Pay Per Click
- Politics
- Privacy
- Rambling
- Remote Desktop Software
- Research
- Rocketboom
- Search Engines
- Second Life
- Security
- Soapbox
- Social Networks
- Sports
- Spyware
- SQL
- Star Wars
- Stumbleupon
- TechCrunch
- Technology
- Thanksgiving
- Toys
- Traffic Rankings
- TV
- Video Blogging
- Wallop
- Web 2.0
- Webmasters
- West Virginia
- Windows Live
- Word Clouds
- Yahoo
- YouTube
- Zango
Latest News
- Latest Iron Man 2 Trailer
- Sad State of News on the Internet
- Tiger Woods Finally Admits to his Infidelity
- Girl Scout Cookies
- Hip Hop Flight Attendant
- Proper ATM Usage Instructions
- Slow Link Building
- WV Wireless Ahead of It’s Time
- New Microsoft Ad Campaign
- Gateway Shutting Down Affiliate Program, Online Website Sales
Monthly archives
- March 2010
- December 2009
- October 2009
- April 2009
- February 2009
- January 2009
- September 2008
- July 2008
- June 2008
- May 2008
- April 2008
- March 2008
- January 2008
- December 2007
- November 2007
- October 2007
- September 2007
- August 2007
- July 2007
- June 2007
- May 2007
- April 2007
- March 2007
- February 2007
- January 2007
- December 2006
- November 2006
- October 2006
- September 2006
- August 2006
- July 2006
- June 2006
Search
SQL Injection Attacks on the Rise
According to Secureworks, the number of SQL injection attacks, where the attacker adds Structured Query Language (SQL) code to a Web form input box to gain access to an organization’s resources or to make changes to data, are on the rise. These type of attacks can be used against many different types of web applications and using it, they can determine the structure and location of databases so they can either download the database or compromise the server. From January to March they block from 100 to 200 attacks a day, as of April that number has jumped to 1,000 to 8,000 attacks per day.
“The majority of the attacks are coming from overseas,” said Ramsey. “And although we certainly see a higher volume with other types of attacks, what makes the SQL Injection exploits so worrisome is that they are often indicative of a targeted attack.” This is a type of attack where the hacker has targeted a particular organization, versus a worm which spreads indiscriminately.
“Depending on the sophistication of the attacker, the online criminal can potentially gain access to a bank or utility company’s key customer databases containing social security numbers, account numbers, credit card numbers, email addresses, etc,” continued Ramsey.
Always secure your servers, and if you don’t know how, contract with someone who does, you’ll sleep better because of it.
Posted by Jimmy Daniels 
Posted in: Attacks, SQL, Security 
No Comments » 
July 2006
