Another round of SQL Injection attacks are happening RIGHT NOW…

That’s right you’ve heard it here first (ok, probably second or third, but at least in the top 10).  A hacking group is using SQL Injection attacks to break into websites in-mass and download malicious content from 318x.com.

As of December 10, 2009 over 132,000 websites have been compromised and are serving up the malicious content.  The attack loads up an Iframe onto the websites via the data returned from the database which eventually leads the user (without there knowledge) to download data from 318x.com which then installats a rootkit-enabled variant of the Buzus backdoor trojan.  The full path of what happens can be found on the link above.

We’ve talked about the securing your website from SQL Injection attacks here, here and here, apparently there are tons of sites out there which haven’t been listening.

Denny

Share and Enjoy:
  • Print
  • Digg
  • del.icio.us
  • Facebook
  • Google Bookmarks
  • Fark
  • Twitter
December 10th, 2009 in Attack Scripts, Databases, External Threats, SQL Injection, SQL Server | tags:

Leave a comment

Your comment