• IP addresses are NOT logged in this forum so there's no point asking. Please note that this forum is full of homophobes, racists, lunatics, schizophrenics & absolute nut jobs with a smattering of geniuses, Chinese chauvinists, Moderate Muslims and last but not least a couple of "know-it-alls" constantly sprouting their dubious wisdom. If you believe that content generated by unsavory characters might cause you offense PLEASE LEAVE NOW! Sammyboy Admin and Staff are not responsible for your hurt feelings should you choose to read any of the content here.

    The OTHER forum is HERE so please stop asking.

Infographic: How SQL Injection Attacks Work

Darknet

Alfrescian
Loyal
Joined
Dec 29, 2014
Messages
73
Points
0

Infographic: How SQL Injection Attacks Work

By Catalin Cimpanu 15 Aug 2015, 21:05 GMT

32% of all Web applications are vulnerable to SQL injections

SQL injections are the ugly step brother of DDOS attacks, maybe not as glamorous, but many times more effective.

Unlike DDOS attacks, which can be carried out regardless of the client's server architecture, SQL injection attacks rely on the presence of a flaw in the target's software, or the usage of bad coding practices.

SQL injections usually end up granting an attacker read access to a database, exposing information, or even worse, giving him write access or full control over the data, which can later be held for ransom.

In the past, companies like Yahoo!, Bell Canada, Kaspersky Lab, The Pirate Bay, the MySQL website, Barracuda Networks and many smaller government services and universities have fallen victim to these kind of attacks.

The results of an SQL injection are always both a technical and PR nightmare, involving an overhaul of the company's entire data storage layer, along with the fallout that can comes with dealing with the media and the angry end users (if any).

The infographic below was created by Jack Leonard from Barricade, an Irish company focusing on security products for small to medium businesses.

It presents the basic steps through which an SQL injection attacks goes through and also presents some statistics, an aggregation of industry stats and Barricade's own data.

As you can see from the data, 27% of all Web attacks are SQL injections, which doesn't surprise us since hackers can obtain solid data they can sell on the Dark Web, instead of boasting to their friends "Hey I DDOSed someone today!"


infographic-how-sql-injection-attacks-work-489340-2.jpg




 
Back
Top