Massive SQL-based Web attack
On Wednesday, the SANS Internet Storm Center and others published details about the massive SQL-based Web attack that occurred over the weekend. The attack, says SANS, is similar to a smaller SQL-injection attack seen in November. At least 70,000 sites were compromised in a short period of time, leading some to speculate this was an automated attack.
From logs files, the attack code appears to exploit a variety of SQL injection vulnerabilities existing on Web sites using Microsoft SQL or Microsoft IIS. On the vulnerable sites, malicious JavaScript is injected into all variable character fields and text fields in the SQL database such that when visitors hit the site, their browsers, if vulnerable, are then redirected to another domain--in this case, us8010.com.
SQL, SQL Server, Microsoft, Web, Attack, Intrusion, Hacking, SANS, Database, IIS
No comment yet
-
Pingback from 1Preventing SQL Injection Storm Attacks » D' Technology Weblog: Technology, Blogging, Tips, Tricks, Computer, Hardware, Software, Tutorials, Internet, Web, Gadgets, Fashion, LifeStyle, Entertainment, News and more by Deepak Gupta. says:June 3rd, 2008 at 2:24 am
[...] June 3, 20082:24 am Preventing SQL Injection Storm Attacks “The malicious SQL payload is very well designed, somewhat database schema agnostic and generic so it could compromise as many [...]
Leave a Response
