Slashdot Mirror

← Back to Stories (view on slashdot.org)

SQL Injection Attack Claims 132,000+

Posted by CmdrTaco on Thursday December 10, 2009 @02:23AM from the check-yer-code-people dept.

An anonymous reader writes "A large scale SQL injection attack has injected a malicious iframe on tens of thousands of susceptible websites. ScanSafe reports that the injected iframe loads malicious content from 318x.com, which eventually leads to the installation of a rootkit-enabled variant of the Buzus backdoor trojan. A Google search on the iframe resulted in over 132,000 hits as of December 10, 2009."

1 of 186 comments (clear)

Min score:

Reason:

Sort:

Re:Windoze by TheNinjaroach · 2009-12-10 02:44 · Score: 5, Informative

All I can tell (from TFA), is it affects Windows servers.
SQL injection attacks affect any number of platforms. It's not a Windows problem, it's not a database problem, it's a "we hired cheap, unskilled developers" problem.

Now the people who browse these sites and get hit with malware, that looks to be specific to Windows.

--
I went to eat some animal crackers and the box said, "Do not eat if seal is broken." I opened the box and sure enough..