CMS Wire

SQL Injection and Little Bobby Tables: How to Protect Your CMS

If your eyes glazed over at the recent announcement of an “SQL injection” vulnerability in WordPress, take heart. You’re not alone. SQL injection attacks are a common kind of security flaw, but are ...
CMS Wire

How They Hack Your Website: Overview of Common Techniques

Digging into how sites and web content management systems are most often hacked, and what you can do to reduce the risk of it happening to you. (Editor's note: This story has been updated.) We hear ...
Graham Cluley

Hackers infect BusinessWeek website via SQL Injection attack

Sophos experts have discovered that the website of BusinessWeek, the world famous weekly magazine, has been attacked by hackers in an attempt to infect the readership with malware. Hundreds of pages ...
ABC News

Website-infecting SQL injection attacks hit 450,000 a day

— -- Cybercriminals are spreading invisible infections far and wide across the Internet by hammering hundreds of thousands of websites each day with so-called SQL injection attacks. The trend ...
Graham Cluley

Olympic Games coverage on news website hit by SQL Injection

My colleague Paul Baccas from SophosLabs has blogged about a number of webpages on news websites that have been infected by an SQL Injection attack designed to install malware onto users’ computers.
InfoWorld

MySQL website falls victim to SQL injection attack

Oracle’s MySQL.com customer website was apparently compromised over the weekend by a pair of hackers who publicly posted usernames, and in some cases passwords, of the site’s users. Taking credit for ...