Tag: SQLINJECTION

Over the last few days, a mass SQL injection attack has been quickly gathering speed. Just three days ago only 28,000 URLs were affected, but at the time of writing, there could be up to 3.8 million infected URLs. Websense has a complete write up the attack, dubbed 'LizaMoon,' but here's the basic gist: it looks like someone is exploiting a vulnerabilty (or vulnerabilities) in hundreds of ...

eHarmony, the massive online dating site whose late-night TV ads you just can't avoid, has unwittingly given away something much more significant that another weekend of free communication for singles. As reported by security watchdog Brian Krebs, eHarmony has been hacked. The worst part: Krebs and another researcher alerted eHarmony administrators about the flaws which allowed the hack to ...

The Pirate Bay's database of over 4 million registered users has been compromised. All user names, along with their associated email and IP addresses have been obtained and are now in the hands of three Argentinian 'researchers'. Speaking to KrebsOnSecurity, and on his own blog, ringleader Ch Russo says that The Pirate Bay's defenses fell to a few simple SQL injections. He's even been kind ...