Musings of a state government CSO.

Read Dan's Bio | See Dan's Posts

Follow on Twitter

SANS Warns of SQL Injection Attacks

Posted May 20, 2008 to Data Protection |

. What's this?

SANS Internet Storm Center has updated their website with additional information related to large numbers of SQL injection attacks. Their site includes some helpful links. One of the links is for Shadowserver.org who has begun maintaining a list of domains used in the mass SQL injection attacks.

The US-CERT has alerted companies and government agencies to act. They encourage a review of internal web content for references to these domains. They also encourage reporting back to the US-CERT with any confirmed compromises. Of course, the domains listed should NOT be visited.

For more information, you can visit SANS.org or the Showdowserver website at:

http://www.shadowserver.org/

Previous Post: Virtual Alabama is Worth a Visit Next Post: Collaboration is King: Our New Cross-Boundary Imperative

What is Tech Briefcase?

TechBriefcase is a new, free service where IT Professionals can Search, Store and Share IT white papers and content like this. Learn more

Bookmark content

Speed up your research efforts with content across the web.

Search and Store

Find the white papers you need. Create folders for any topic.

View Anywhere

Open your briefcase on your iPhone, tablet or desktop. Share with colleagues.

Don't have an account yet?

WHITE PAPER

Reduce Email Archives up to 60%

Are you considering implementing a proactive archiving and eDiscovery solutions? This paper summarizes 15 separate soft cost savings when implementing Symantec Enterprise Vault and the Clearwell eDiscovery Platform.

» Learn More

WHITE PAPER

Aberdeen Report: To Patch, or Not to Patch? (Not If, But How)

The report explores the correlation between the current use of patch management and the level of endpoint-related risk that companies are effectively accepting.