Some useful points about how digital retailers are addressing security. Its not all about the network.
" ... According to a study released this month by privacy and security research firm Ponemon Institute and database security specialist DB Networks, a majority of security experts believe that the venerable technique of SQL injection was an important component of these attacks.
SQL injection, which started coming into heavy use around 1998, is an attack that seeks to exploit a weakness in a Web application connected to a database by inserting malicious SQL statements into a form field, URI stem or cookie value for execution. When processed by a vulnerable application, this results in a rogue SQL statement issues to the database, usually to access, modify or delete content that it would not usually be authorized to access. In extreme cases, SQL injection can give an attacker control of the server on which the database resides ... "
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment