SQL attack hits thousands of sites

By Shaun Nichols on Jan 14, 2008 7:26AM
SQL attack hits thousands of sites
Researchers at the Sans Institute said that the huge number of hacks appears to be the work of a single malicious bot program.

The bot automatically travels from site to site, executing the SQL attack and inserting specially obfuscated code into the page.

Researchers were able to decipher the code left by the bot, which redirects users to a separate site which then attempts to run a number of exploits.

"I saw the very same attack in November last year, but it was not this widespread," wrote Sans researcher Bojan Zdrnja in a blog posting.

"It appears that the attacker improved the crawling/attacking function of his bot so he managed to compromise more websites."

Researchers also found that users were being directed to one of the sites being used to host an attack targeting a flaw in RealPlayer and attempting to exploit flaws in Internet Explorer.

The US Computer Emergency Response Team has urged users to mitigate the risk of attack by updating to the latest version of RealPlayer and limiting ActiveX controls on Internet Explorer.

Zdrnja said that administrators can protect against the attack by putting a proxy or web application firewall in place.

Got a news tip for our journalists? Share it with us anonymously here.
Copyright ©v3.co.uk
Tags:
attack hits of security sites sql thousands

Partner Content

New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro
New Microsoft CSP rules? Here’s how MSPs can stay ahead with Ingram Micro
Think Technology Australia deliver massive ROI to a Toyota dealership through SharePoint-powered, automated document management
Think Technology Australia deliver massive ROI to a Toyota dealership through SharePoint-powered, automated document management
Why Renew IT Is Different: Where Science, AI and Sustainability Redefine IT Asset Disposition
Why Renew IT Is Different: Where Science, AI and Sustainability Redefine IT Asset Disposition
Have ticket queues become your quiet business risk?
Have ticket queues become your quiet business risk?
MSPs with a robust data protection strategy will achieve market success
MSPs with a robust data protection strategy will achieve market success

Sponsored Whitepapers

Protect the data your business relies on
Protect the data your business relies on
Cut through the SASE confusion
Cut through the SASE confusion
Stay protected as cyber threats evolve
Stay protected as cyber threats evolve
Defend Your Network from the Next Generation of AI Threats
Defend Your Network from the Next Generation of AI Threats
The race to AI advantage is on. Don’t let slow consulting projects hold you back.
The race to AI advantage is on. Don’t let slow consulting projects hold you back.

Events

techpartner.news MSP index - Melbourne
techpartner.news MSP index - Melbourne
Pipeline 2026: Game Changers
Pipeline 2026: Game Changers

Most read articles

Why Kat McCrabb started with the hard stuff

Why Kat McCrabb started with the hard stuff
SentinelOne signs distribution agreement with Sektor

SentinelOne signs distribution agreement with Sektor
Rapid7’s new SIEM combines exposure management with threat detection

Rapid7’s new SIEM combines exposure management with threat detection
Digital61 expands cybersecurity portfolio

Digital61 expands cybersecurity portfolio

Log in

Email:
Password:
  |  Forgot your password?