Compare cert salaries and plan your next career move
chrisone wrote: » Yeah i read about this incident, pretty interesting attack. Did you see the compromise of the Epsilon advertising company? I got a couple emails from my banks and other services i have regarding this situation. This seems like a very big security breach.Banks, credit-card issuers warn of email breach - Yahoo! News
phoeneous wrote: » I've received three apology emails regarding the Epsilon breach, and after reading RK's post about the new sql attack yesterday I wondered if they were related.
RobertKaucher wrote: » Yes, I am changing my name to Robert'); DROP TABLE Students; -- Just call me Little Bobby Tables.
phoeneous wrote: » Is t-sql the only language affected?
Q: Could this mean that there's a vulnerability in Microsoft SQL Server 2000 and 2005?A: No. Everything points to that this is a vulnerability in a web application. We don't know which one(s) yet but SQL Injection attacks work by issuing SQL commands in unsanitized input to the server. That doesn't mean it's a vulnerability in the SQL Server itself, it means that the web application isn't filtering input from the user correctly.
NightShade03 wrote: » If it was a MS SQL specific thing then I would image a SQL worm vs SQL injection would be more commonly seen. I just like to knock Windows I'm not surprised it's on the application level.
NightShade03 wrote: » Haha I remember reading that somewhere...I love that line.
Compare salaries for top cybersecurity certifications. Free download for TechExams community.
