[Owasp-alabama] Re-Post of SQL Injection attacks round three

• Previous message: [Owasp-alabama] Dark Reading article on new phishing tool
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello list,
 
It appears as though some list members did not receive my original post on Tuesday about the latest iteration of Mass SQL Injection attacks from the asprox botnet. (AKA fast flux SQL injection)
 
I am attaching the writeup for those of you that didn't get it.
 
Let me know if there are any questions.
 
Also, just out of curiosity, how many of us are using web based HR systems, and if so, what product are you using? I ask because I have seen a rising trend of poorly written web interfacing to HR systems and many companies don't test internally hosted applications.
 
 
-Brad Causey
IT Security Technology
205-297-6102
-------------- next part --------------
An HTML attachment was scrubbed...
URL: https://lists.owasp.org/pipermail/owasp-alabama/attachments/20080829/9749ab32/attachment-0001.html 
-------------- next part --------------
A non-text attachment was scrubbed...
Name: BradCausey-Fast_Flux_Injection.pdf
Type: application/pdf
Size: 45759 bytes
Desc: not available
Url : https://lists.owasp.org/pipermail/owasp-alabama/attachments/20080829/9749ab32/attachment-0001.pdf 

• Previous message: [Owasp-alabama] Dark Reading article on new phishing tool
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]