A new SQL injection attack aimed at Microsoft IIS web servers has hit some 500,000 websites, including the United Nations, UK Government sites and the U.S. Department of Homeland Security. In other words, there’s no patch that’s going to fix the issue, the problem is with the developers who failed follow well-established security practices for handling database input. While the attack is not necessarily Microsoft's fault, it is unique to the company's IIS server.
read more | digg story
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment