CSOonline

SQL Server : The Real Security Story

UPDATE: The story that originally got my attention has been updated in all of the places I could still find it yesterday, so I’m pulling my references to the story and just focusing on the positive ...
ITWire

{JS-ON: Security-OFF}: Abusing JSON-based SQL to bypass WAF

GUEST RESEARCH: Web application firewalls (WAF) are designed to safeguard web-based applications and APIs from malicious external HTTPs traffic, most notably cross-site scripting and SQL injection ...
dbta

Sponsored Content: SQL Security and Compliance: What an Organization Can Do Now to Prevent Costly Breaches Before They Happen

Databases contain valuable business assets; ensuring this information is secure is paramount. SQL Compliance Manager by Idera can protect those assets and help address your industry’s strict ...
Network World

Logins and Users – SQL Server security fundamentals

I have worked with SQL Server for many years now, back to Sybase SQL Server days and there has always been confusion over Logins and Users. Even though they typically use the same name they are ...
Security

Cybersecurity Awareness Month: How to mitigate an SQL Injection Attack

In response to this, the application security SaaS company Indusface has detailed the potential financial impact of SQL Injection attacks on businesses. Additionally, they offer best practices to help ...
Dark Reading

10 Reasons SQL Injection Still Works

After all of these years, SQL injection vulnerabilities still stand as an old reliable for attackers seeking to break into corporate databases. "SQL injection is still out there for one simple reason: ...
Business Wire

Vaultree Announces Advanced Data-In-Use Encryption for Google Cloud SQL, Redefining Cloud Data Security

SAN FRANCISCO--(BUSINESS WIRE)--As enterprises continue to embrace cloud solutions, the challenges surrounding data security have come to the forefront. Vaultree, a cybersecurity industry leader in ...
Dark Reading

How to Tame SQL Injection

For more than a decade, injection vulnerabilities have literally topped the charts of critically dangerous software flaws, deemed more serious than all other types of vulnerabilities in the 2010, 2013 ...