September 3rd, 2010 by lhaasThis article just reiterates the point, once again, that companies need to be more proactive in their security:
A new wave of mass SQL injection attacks seen in mid-August to hit over half a million websites, including parts of Apple’s site serves as a weighty reminder of the growing prevalence of mass injections and of SQL injections in general as a favorite means of hackers to tap into organizations’ infrastructure and data resources.
In light of these attacks, security researchers believe now is as good of a time as any to revisit some best practices necessary to prevent mass SQL injections and mitigate the risks associated with injection attacks. These practices are hardly revolutionary, but it is clear that they aren’t being implemented as widely as they need to be.
via Five Ways to Stop Mass SQL Injection Attacks – DarkReading.
our liveForensics tool addresses issue #2 outlined in this article: “Implement filtering and monitoring tools.” As the article suggests, liveForensics provides monitoring at both the application and database level, helping to mitigate the risk of SQL injection attacks.
Check out the additional benefits of liveForensics.
