Google has announced support for the HTML 5 Web SQL Database API, and others are likely to follow soon or have already started on support for this API. In the meantime, the completion of the ...

For the first five months of 2008 IBM ISS helped large corporations block about 5,000 SQL attacks a day. By mid-June, daily attacks spiked to 25,000; by October they topped 450,000 a day.

How did Gonzalez carry out such a massive attack? He exploited a web vulnerability known as SQL injection. This attack allows the malicious manipulation of a website to send unintended commands to the ...

Oracle’s MySQL.com customer website was apparently compromised over the weekend by a pair of hackers who publicly posted usernames, and in some cases passwords, of the site’s users. Taking ...

Barracuda Networks has become the latest IT security vendor to be hit by an SQL injection attack, but the company has moved swiftly to mitigate the fallout from the attack, as well as confirming that ...

Security researchers have developed a generic technique for SQL injection that bypasses multiple web application firewalls (WAFs). At the core of the issue was WAF vendors failing to add support ...

The Honeynet Project releases SQL injection emulator for the open-source Glastopf web application honeypot ...

My colleague Paul Baccas from SophosLabs has blogged about a number of webpages on news websites that have been infected by an SQL Injection attack designed to install malware onto users’ computers.

I've got a website that's running Joomla 1.5. I've one out of date extension, and last Monday after Super Bowl, something took the site down. I tried to repair the SQL infection, but I oviously ...