Mass SQL Injection Attack Going On

By Daniel Miessler on January 8th, 2008: Tagged as Information Security | Security

There’s a major SQL injection attack going on that’s compromised tens of thousands of machines — and possibly hundreds of thousands. It works by using SQL injection to update MS-SQL-based (no others reported yet) databases so that the links on a victim site all point to a URL infected with malware.

The URL has a malicious javascript that runs and attacks a certain version of RealPlayer — giving the attacker the ability to run arbitrary code on the client machine.

[ Mass SQL Injection Attack ]

  • Digg
  • Reddit
  • HackerNews
  • StumbleUpon
  • DZone
  • Google Bookmarks
  • Twitter
  • Facebook
  • del.icio.us
  • FriendFeed
  • Posterous
  • RSS
  • email
  

View Comments

  • I inherited a legacy .net website at work when I hired on about three months ago that is a security nightmare. Despite the IT department's admonitions, the security problems (among many others) were ignored. We were hit with this attack about a week ago and we had to take down the entire site for an entire weekend (Fri. - Sun.). Our final solution was to employ a kind of proxy between the web server and the internet to filter http requests, looking for potential attacks. The site is to massive and so poorly constructed that it would literally take us months to insert validation and input filtering for all forms.


    I have almost had it with taking orders from people who are plainly ignorant about technology, who think they can do my job better than I can, and who get paid significantly more than I do. Grrr...

blog comments powered by Disqus

 

twitter_icon

Sample Original Content


Information Security

Tutorials and Primers

Culture & Society

Technology & Science

Politics

Philosophy & Religion

Miscellaneous

Tools & Projects


Blog Archives