• On MovieTome: See the TRAILER for TERMINATOR 4!
advertisementAT&T Tech Support 360

May 2, 2008 4:11 PM PDT

Security Bites podcast: SQL-injections hit the Web

By CNET News.com Staff

Listen Now

Robert Vamosi talks with Jeremiah Grossman, CTO of WhiteHat Security.

Download mp3

Listen to more episodes of this podcast at the Security Bites podcast archive.

Subscribe to this podcast

Subscribe to the podcast rss feed,

The last few weeks have seen a surge in SQL attacks. Some, most likely using an automated tool, has involved adding malicious code to legitimate Web sites. For the end user, there's no way to tell that you are visiting a comprised site. Silently, your browser downloads the malicious content onto your PC.

This week Robert talked with Jeremiah Grossman, CTO for WhiteHat Security. Grossman said that what's different about these latest attacks is that someone has found a generic way to compromise Microsoft-SQL sites, which number in the thousands. Before, SQL-injection attacks were niche, targeting travel sites or sports sites, but these recent attacks have affected commercial, educational and even government sites.

advertisement

Latest tech news headlines

RSS Feeds

Add headlines from CNET News to your homepage or feedreader.

More feeds available in our RSS feed index.

Markets

Market news, charts, SEC filings, and more

Related quotes

Dow Jones Industrials (-7.70%) -679.95 8,149.09
S&P 500 (-8.93%) -80.03 816.21
NASDAQ (-8.95%) -137.50 1,398.07
CNET TECH (-7.06%) -77.09 1,014.20
  Symbol Lookup
advertisement
News
Latest news
Business tech
Green tech
Wireless
Security
Media
Popular topics
Apple iPhone
Apple iPod
CES
Cell phones
Dell
GPS
CNET sites
CNET Site map
CNET TV
Downloads
News
Reviews
Shopper.com
More information
Newsletters
Corrections
Customer Help Center
RSS
What's new
About CNET