By mswatcher
via greghughes.net
Published: Aug 14 2008 / 04:53
Over the past several days, a significant number (in the thousands) of web applications, some of them well-known and well-used, have fallen victim to a distributed SQL injection attack that takes advantage of weak or non-existent input validation to inject malicious HTML code that then performs a drive-by malware attack on unsuspecting visitors. Since visitors to your site trust it, if your site has been hacked they are more likely to allow the malware to install on their computer (especially if, for example, the malware is delivered in the form of a browser helper object or something along those lines
Add your comment
Voters For This Link (11)
-
mswatcher -
paul_houle -
Thierry.Lefort -
rogerjose81 -
startrak118 -
dzone@portinfo.com -
shamsm -
subru77 -
thinkingserious -
StephenCronin
-
seneca
