Ars Technica

Newly detected SQL injection attack snags Apple in wide net

A new series of mass SQL injection attacks has planted links to malware sites and hidden iframes in over a million webpages, including parts of Apple’s website. The technique is similar to a standard ...
Threat Post

SQL injection tactics revealed

SQL injection attacks have become the most reliable way for hackers to gain access to valuable data on back-end systems, with many high-profile Web sites falling victim to the technique over the last ...
Government Technology

IBM: SQL Injection Attacks Increasingly Threaten Public and Private Networks

Workplace security staffs must act fast to iron out kinks in their application code if they want to be fortified against infiltration -- hundreds of thousands of them hammer at those vulnerabilities ...
Computerworld

SQL injection attacks against databases rise sharply

Hackers are striking databases in record numbers, trying to pilfer a rich trove of personal and financial data, a security vendor said today. SecureWorks Inc., based in Atlanta, is detecting up to ...
Threat Post

PayPal Addresses Months-Old SQL Injection Vulnerability, Frozen Accounts

Researchers with Vulnerability Lab today announced mega payment processor PayPal has fixed a flaw on its site that allowed a remote user or a local user with low privileges to compromise a Web ...
PC World

Emergency vBulletin patch fixes dangerous SQL injection vulnerability

Developers of the popular vBulletin Internet forum software have issued emergency patches Wednesday in order to fix a SQL injection vulnerability that could allow attackers to read and manipulate ...