http://blogs.technet.com/neilcar/archive/2008/05/30/sql-injection-trends-guidance.aspxI've been working with the SWI team to write a comprehensive overview of the SQL Storm attacks with guidance for IT administrators, developers, and end users.  That article is posted at sql-injection-attack.aspx . For developers, specifically, Balaen-USCommunityServer 2.1 SP1 (Build: 61025.2)