|
|||||||||||||||||||||||||
|
|||||||||||||||||||||||||
|
SecureWorks Finds SQL Injection Hacker Attacks on the Rise against Banks, Credit Unions and UtilitiesJuly 19, 2006; 06:18 AM
“The majority of the attacks are coming from overseas," said Ramsey.
“And although we certainly see a higher volume with other types of
attacks, what makes the SQL Injection exploits so worrisome is that
they are often indicative of a targeted attack.” This is a type of
attack where the hacker has targeted a particular organization, versus
a worm which spreads indiscriminately. SQL Injection is a type of security exploit in which the attacker adds Structured Query Language (SQL) code to a Web form input box to gain access to an organization’s resources or to make changes to data. Using this technique, hackers can determine the structure and location of key databases and can download the database or compromise the database server. “What makes this vulnerability so pervasive is that SQL Injection attacks can prey on all types of Web applications - even those as simple as a monthly loan payment calculator or a ‘signup for our customer newsletter’ form,” said Ramsey. Recent SQL Injection Attacks “The CardSystems security breach, where hackers stole 263,000 customer credit card numbers and exposed 40 million more, is a prime example of a SQL Injection attack,” said Ramsey. A
more recent example of a SQL Injection attack occurred last December
when Russian hackers broke into a Rhode Island government Web site and
stole credit card information from individuals who had done business
online with state agencies. The Russian hackers claimed to have stolen
53,000 credit card numbers during this attack. Additionally, it is important to note that protecting against a SQL Injection attack also requires organizations to not only protect their web applications but also the web server on which the web application is running, the database from which the web application is retrieving information, and the operating systems upon which the web servers, applications and database reside. A Network Intrusion Prevention System and Host Intrusion Prevention System can offer many of these protections, especially if they are being monitored by a 24x7x365 security team that can stay on top of the newest types of SQL Injection attacks, as there are new variances being released all the time. SecureWorks has been successful in protecting its clients because it is constantly monitoring the attack landscape and developing countermeasures for any new attacks that might arise. SecureWorks is also recommending that organization follow these Safe Computing Guidelines.
“A SQL Injection attack is certainly not a new form of attack or the most sophisticated type of attack; however, as illustrated, it can be quite malicious so we are advising all organizations, with an Internet presence to take their web application security very seriously,” concluded Ramsey.
About SecureWorks
|
|||||||||||||
Copyright © 1998 - 2018 DevStart, Inc. All Rights Reserved |