15:15 CET on the 21st June 2011 Entry written by Secunia.
According to the CSO online article, ‘Mesh networks may make SQL injection attacks more persistent’ by Robert Lemos, SQL injection attacks represent major security concerns for web developers and site owners. This technique can cause massive website compromises.
Unfortunately it seems that attacks as a result of SQL injection are likely to become more difficult to detect and prevent. With the latest version of the attack, it appears that attackers are bypassing traditional methods and are instead creating a dynamic script, sending unaware visitors to a compromised web server.
In the article, Thomas Kristensen, Secunia’s Chief Security Officer says “The attack underscores that site owners need to do better security analyses of their sites. Most companies, however, will not tackle remediating expensive vulnerabilities in their Web sites unless it is a priority from executives.”
To read the article in full, visit CSO Online here.
Discuss this news entry
A new thread in our forum is created. Activate the thread by
Subject: CSO: Secunia comments on SQL injection attacks