Questions about Web Server Attacks

IIS at risk?

The Official Blog of the SBS "Diva" — Sat, 26 Apr 2008 09:10:13 GMT

I got a ping today asking if SBS 2003 was vulnerable to this Security Advisory... Microsoft Security

IIS at risk?

MVPs — Sat, 26 Apr 2008 09:36:36 GMT

I got a ping today asking if SBS 2003 was vulnerable to this Security Advisory... Microsoft Security

Recent slate of IIS attacks - more info

K. Brian Kelley - Databases, Infrastructure, and Security — Sat, 26 Apr 2008 15:24:43 GMT

The recent slate of attacks on IIS servers don't seem to be an attack directly against IIS or against

Microsoft denies fault in hacks

pcpartfinder — Mon, 28 Apr 2008 00:36:40 GMT

Microsoft is denying that a recent rash of Web server attacks are the company's fault. In a blog

Microsoft IIS Web servers hit by widespread SQL injection attacks

Microsoft News Tracker — Mon, 28 Apr 2008 04:59:02 GMT

Over the last week there have been a number of reports of automated SQL injection attacks on Web sites running Microsoft’s flagship IIS Web server. The Washington Post’s Brian Krebs summarizes them nicely in Hundreds of Thousands of Micros..

Nuova ondata di attacchi SQL Injection/iFrame: l'importanza della sicurezza applicativa e del security patching

Security Blog di Feliciano Intini — Mon, 28 Apr 2008 17:06:27 GMT

La blogosfera "sicura" (nome scherzoso con cui identifico l'insieme di blog/e-magazines in

Microsoft Refuses To Take Blame for IIS SQL Injections

BestBizWare — Mon, 28 Apr 2008 19:44:50 GMT

If your business’s Website has been hacked in recent weeks via SQL injection attacks, don’t blame Microsoft. Heck no. Not even if it’s their fault. A Microsoft manager said the following in response to questions: "Our investigation

Weak SQL coding techniques result in Huge SQL Injection attacks

Harry Waldron - My IT Forums Blog — Mon, 28 Apr 2008 20:47:29 GMT

A new major security attack occurred over the weekend, where over one half million web pages became infected

Weak SQL coding techniques result in Huge SQL Injection attacks

Harry Waldron - Microsoft MVP Blog — Mon, 28 Apr 2008 20:47:58 GMT

A new major security attack occurred over the weekend, where over one half million web pages became infected

Microsoft: Massive site attacks not our fault

infoworld.com — Mon, 28 Apr 2008 21:12:10 GMT

Microsoft late Friday denied that vulnerabilities in its Web and SQL Server software had been exploited

The recent IIS Attacks

Roger's Security Blog — Tue, 29 Apr 2008 23:05:37 GMT

There has been a lot of discussions in different blogs on the attacks on IIS servers. Microsoft Security

Hullanak az IIS-ek

Balássy György (MSDNKK) — Wed, 30 Apr 2008 13:08:07 GMT

Az utóbbi időben egyre több olyan hír jelent meg a világhálón, amelyek szerint durva hiba lehet a Windows

Web attacks affect 500,000 webpages: Microsoft says not our fault

TechReef — Thu, 01 May 2008 16:02:28 GMT

Microsoft Corp. late Friday

denied that vulnerabilities in its Web and SQL Server software had been

exploited to hack hundreds of thousands of Internet pages. Attacks on legitimate Web domains, including some belonging to the <a title="United Nations"

Links Roundup

enemieslist.com: Spam News — Fri, 02 May 2008 18:47:04 GMT

Drawing the Line Massive Attack: Half A Million Microsoft-Powered Sites Hit With SQL Injection Questions about Web Server Attacks Microsoft denies fault in hacksThe resulting botnet's mail was the only thing that was making it through my rDNS filters..

http://blogs.technet.com/controlpanel/blogs/postlist.aspx

TrackBack — Fri, 09 May 2008 22:24:48 GMT

SQL Injection General Guidance

Microsoft Switzerland Security Blog — Wed, 28 May 2008 11:12:49 GMT

There s a lot of noise arround currently ongoig SQL injection attacks and even if that is quite an "old"

The latest SQL Injection Attacks

Roger's Security Blog — Fri, 30 May 2008 10:41:04 GMT

Well, there was quite some chatter over the last few weeks with regards to the massive defacements we

SQL注入攻击-来自微软安全博客的建议

Applelure — Thu, 05 Jun 2008 06:01:18 GMT

本文翻译自微软博客上刊载的相关文章，英文原文版权归原作者所有，特此声明。（特别感谢NeilCarpenter对本文写作提供的帮助）

近期趋势

从去年下半年开始，很多网站被损害，他们在用于生成动...