Sign in
Neil Carpenter's Blog
Forefront products, WSUS, Security Incident Response, and whatever else comes up.
Translate This Page
Translate this page
Powered by
Microsoft® Translator
Options
Email Blog Author
RSS for posts
Atom
RSS for comments
OK
Search Blogs
Tags
Antigen
AntiVirus
Anti-Virus
ASP
asp.net
AV
Forefront
FSSMC
General
humor
Incident Response
iphone
Mobile
Networking
Pages
Security
SQL
Tool
Archive
Archives
November 2009
(1)
October 2008
(2)
August 2008
(2)
July 2008
(3)
June 2008
(1)
May 2008
(4)
April 2008
(2)
March 2008
(3)
August 2007
(2)
July 2007
(2)
June 2007
(2)
October 2004
(4)
June 2004
(7)
March, 2008
TechNet Blogs
>
Neil Carpenter's Blog
>
March, 2008
Posts
Subscribe via RSS
Sort by:
Most Recent
|
Most Views
|
Most Comments
Excerpt View
|
Full Post View
Neil Carpenter's Blog
Good News
Posted
over 5 years ago
by
neilcar
0
Comments
The good news is that, whatever else might happen, these guys won't get pwned by SQL injection. (Via GrumpySecurityGuy .)
Neil Carpenter's Blog
Anatomy of a SQL Injection Incident, Part 2: Meat
Posted
over 5 years ago
by
neilcar
15
Comments
Intro It would appear that the incident I wrote about yesterday is still ongoing. I've been using a search engine to query for the *.js file that's being injected and it looks something like this: Wednesday: 10K hits (This is Avert's number. I didn't...
Neil Carpenter's Blog
Anatomy of a SQL Injection Incident
Posted
over 5 years ago
by
neilcar
15
Comments
A number of people are reporting that 10K+ websites have been hacked via a SQL injection attack that injected a link to a malicious .js file into text fields in their database. For example, here's Avert Labs report . The reports that I've seen talk about...
Page 1 of 1 (3 items)