How websites deal with SQL injection
Written on May 20, 2008 by editor
by: Djai Tanji
The substantial SQL injection attacks that struck Microsoft-based websites claimed as one of its victims Autoweb which is a U.K. based advertising and marketing site. The continuous attack that hits Autoweb exploited susceptibility in a single line of code in the web application to cut through the company’s Microsoft SQL database and knock the site offline. Autoweb’s IT staff then realized that database tables which stores content provided by car dealers had been overwritten with a 30-character script and that gave them a window of opportunity. Autoweb blocked the attacks by looking at log files which originated from IP addresses in China. Autoweb did an everyday backing up and asked assistance from Secerno, a U.K. based firm to build a database security appliance.
If you enjoyed this post you might want to subscribe to our RSS Feed!
- 
- 
- 
- 
Take a look to these similar posts!
Fatal error: Call to undefined function similar_posts() in /home/spm015/public_html/websecurity101/wp-content/themes/Parmarossa1.0/single.php on line 17