Resources
- sort by:
- Relevance
- Date
- Popularity
- SQL injection attacks led to massive data breaches
- This week's disclosure that the huge data thefts at Heartland Payment Systems and other retailers resulted from SQL injection attacks could finally push retailers into paying serious attention to Web application security vulnerabilities, just as the breach at TJX focused attention on wireless issues. A federal grand jury on Monday...
- News items 2009-08-18
- China Flooding Web with SQL Injection Attacks
- Despite its time-honored status from a technical standpoint, SQL injection remains a massively popular format for online malware campaigns, with a tidal wave of the threats currently emanating out of China. As proven in the recent indictment of American Roberto Gonzalez, charged with helping to carry out some of the...
- News items 2009-08-28
- New mass SQL injection attack infects 56,000 websites
- Tens of thousands of websites have been compromised with a suite of malware containing backdoors, password stealers and downloaders, according to a security firm."It's a pretty potent concoction, from a malware perspective," Mary Landesman, ScanSafe's senior security researcher, told SCMagazineUS.com on Monday.So far, more than 56,000 sites have been compromised...
- News items 2009-08-24
- Don't Be SQL Server Slammed This Holiday
- News Analysis. Microsoft has warned of a zero-day vulnerability affecting SQL Server. Do take Microsoft's security advisory seriously. Remember SQL Server slammer, which struck nearly six years ago? IT administrators were lucky the worm spread a month after Christmas. The new SQL Server vulnerability could bring coal to your Christmas...
- News items 2009-08-07
- Yahoo Careers website patched to close SQL flaw
- Security researchers have helped to close up a blind SQL injection vulnerability on Yahoo's careers website.Through their normal surveillance of cybercrime forums, researchers at web application firewall provider Imperva noticed discussion about the flaw, present on careers.yahoo.com and which could allow attackers to extract database contents, including personal information. The...
- News items 2009-11-16
- Microsoft Downplays SQL Server Database Vulnerability
- Microsoft is disputing the severity of a vulnerability found in its SQL Server database that security researchers say exposes administrative passwords. The vulnerability, uncovered by Sentrigo, can be exploited remotely in SQL Server 2000 and 2005.Microsoft is downplaying a SQL Server security flaw that could be exploited by someone with...
- News items 2009-09-02
- Microsoft Warns of SQL Attack
- Just days after patching a critical flaw in its Internet Explorer browser, Microsoft is now warning users of a serious bug in its SQL Server database software. Microsoft issued a security advisory late Monday, saying that the bug could be exploited to run unauthorized software on systems running versions of...
- News items 2009-08-07
- 57,000 Web sites Compromised in Mass Attack, ScanSafe Reports
- ScanSafe has reported a massive compromise impacting 57,000 legitimate sites. When users visit the infected Web pages, they are greeted with a truckload of password stealers and other Trojans.Security firm ScanSafe has uncovered a campign that has compromised more than 57,000 Web sites in a bid to dump gallons of...
- News items 2009-08-25
- Indictments Arrive for Largest U.S. Credit Card Breach
- Charges pile up for Albert Gonzalez and two unnamed alleged co-conspirators who federal prosecutors say helped engineer SQL injection attacks on Heartland Payment Systems, 7-Eleven and the Hannaford Brothers grocery store chain. Gonzalez also faces different charges for allegedly carrying out a security hack against restaurant chain Dave & Buster's.Albert...
- News items 2009-08-17
- Three men indicted in largest U.S. data breach
- Two Russians and a Florida man were charged on Monday with hacking into Heartland Payment Systems, 7-Eleven and the Hannaford Brothers supermarket chain and stealing data related to more than 130 million credit and debit cards.The indictment names 28-year-old Albert Gonzalez of Miami, who already has been charged with stealing...
- News items 2009-08-17
- Details of Heartland, Hannaford Data Breaches Emerge
- The indictment listing the charges against a 28-year-old Miami man sheds new light on how the government says a group of attackers penetrated the security of Heartland Payment Systems, Hannaford Bros. and 7-Eleven.Roughly seven months after news broke of a breach at Heartland Payment Systems, 28-year-old Albert Gonzalez was indicted for...
- News items 2009-08-17
- Largest hack and ID theft in US: Three suspects charged
- Two Russians and a Florida man were charged on Monday with hacking into Heartland Payment Systems, 7-Eleven, and the Hannaford Brothers supermarket chain, and stealing data related to more than 130 million credit and debit cards. The indictment names 28-year-old Albert Gonzalez of Miami, who already has been charged with...
- News items 2009-08-18
- Indictments announced for Heartland, Hannaford breaches
- Federal indictments were handed down in Washington, D.C. on Monday against three men accused of involvement in what the U.S. Department of Justice DoJ is calling the largest credit- and debit-card data breach in the United States. The men allegedly used sophisticated techniques to bypass network firewalls and penetrate the databases...
- News items 2009-08-18
- Attack on Government Web Sites Could Have Been Prevented With Cenzic Solutions
- Cenzic, the leading provider of application security vulnerability and assessment and risk management solutions, today stated that the company's technology could have prevented the recent SQL injection hack attacks that infiltrated more than half a million Web sites, including the United Nations and the U.S. Department of Homeland Security. The...
- Research articles 2008-05-28
- Group to detail 25 most dangerous coding errors hackers exploit
- With the mobility of employees and the ease with which external devices can be brought in and out of a network, continuing to build your security plan for network servers and clients is a must. Fortunately, there is much that organizations can do to protect themselves from attacks - internal...
- News items 2009-08-07
- M&T Bank Selects Teros to Defend Against Phishing, Identity Theft and Brand Hijacking; Teros Web Application Firewall Blocks Malicious Cross Site Scripts and SQL Injection Attacks
- SUNNYVALE, Calif. -- Teros, the global leader in Web application firewalls, today announced that M&T Bank Corporation (NYSE:MTB) has selected the Teros Web Application Gateway to protect the bank's online mortgage center from malicious Internet attacks.
- Research articles 2005-11-01
- Top Layer Networks IPS 5500 Provides Zero-Day Protection Against SQL Injection Attack
- Top Layer's TopResponse Research Team Advises Customers of Proactive Protection Against Critical Vulnerabilities
- Research articles 2008-01-18
- You Snooze, You Lose
- In the strongest sign yet that the government will, if it must, regulate corporate security, the Federal Trade Commission is cracking down on companies with lax security on their websites. In its third such case, the FTC recently settled with clothing and accessory company Guess. Customer data was stolen...
- Research articles 2003-09-01
- Three Men Charged with Stealing 130 Million Credit Cards
- According to prosecutors, this is the largest credit and debit card theft ever charged. Albert Gonzalez of Miami, AKA "segvec," "soupnazi" and "j4guar17," plus two unnamed co-conspirators were charged with "...conspiracy and conspiracy to engage in wire fraud and accused of using a sophisticated hacking technique, which tries to find...
- News items 2009-08-17
- Get Rich or Die Tryin': 'soup nazi' hacker's motto
- Accused of stealing over 130 million credit cards ... Albert Gonzalez. A former Secret Service informant who ran an operation called "Get Rich or Die Tryin" reportedly complained to associates of having to manually count $US340,000 in stolen $20 bills when his counting machine broke. Albert Gonzalez, 28, is accused...
- News items 2009-08-19
- << Previous
- page 1 of 2
- Next >>
