Over a million web sites affected in mass SQL injection attack

Security researchers from Armorize have intercepted a mass SQL injection attack, targeting ASP ASP.NET websites.

The mass infection, redirects users to a web malware exploitation kit, attempting to exploit vulnerabilities in Adobe PDF or Adobe Flash or Java, with the dropped malware having a low detection rate.

Mass SQL injection attacks usually take place through active search engines reconnaissance (SQL Injection Through Search Engines Reconnaissance; Massive SQL Injections Through Search Engine’s Reconnaissance – Part Two; Massive SQL Injection Attacks – the Chinese Way) followed by automatic exploitation of the vulnerable sites. Read More

This entry was posted in News, Uncategorized. Bookmark the permalink.

Leave a Reply

Your email address will not be published. Required fields are marked *