SQL injection
FAQ: The rapid spread of SQL injection attacks
March 17, 2009
A criminal hacker’s epiphany: Why not automate SQL inject attacks and use botnets to launch them?
That stroke of genius dawned on a criminal coder, possibly Chinese, a little less than a year ago. The result: in just 10 months, botnet-driven SQL injection attacks have been used to plant infections on multi-millions of webpages. These infections now lurk in wait for anyone who happens to click to what appears to be …More