{"id":2310,"date":"2003-11-19T00:00:00","date_gmt":"2003-11-19T00:00:00","guid":{"rendered":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/2003\/11\/19\/hackers-needle-out-web-data\/"},"modified":"2021-12-30T11:41:03","modified_gmt":"2021-12-30T11:41:03","slug":"hackers-needle-out-web-data","status":"publish","type":"post","link":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/2003\/11\/19\/hackers-needle-out-web-data\/","title":{"rendered":"Hackers needle out web data"},"content":{"rendered":"

ALMOST three-quarters of all corporate applications supporting online transactions are wide open to “structured query language” hacking, according to Australian security firm B-sec.<\/p>\n","protected":false},"excerpt":{"rendered":"

Its research suggests 72 per cent of Australia’s leading companies are vulnerable to an “SQL injection attack” that gives the attacker unrestricted access to the corporate database. The SQL attack occurs when a hacker adds code to a standard URL address that tricks the application into giving access to stored information.<\/p>\n

“If the vulnerability is so widespread, then the only possible explanation is that there’s a flaw in corporate governance.<\/p>\n

“The risk of web-based application attacks is commonly known in the IT industry, as are simple, publicly available measures to prevent such attacks.”<\/p>\n

B-sec security consultant Justin Derry said SQL injection stood out as the No.1 concern in recent security assessments.<\/p>\n

More info: [url=http:\/\/australianit.news.com.au\/articles\/0,7204,7916529%5E15318%5E%5Enbv%5E15306,00.html]http:\/\/australianit.news.com.au\/articles\/0,7204,7916529%5E15318%5E%5Enbv%5E15306,00.html[\/url]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[13],"tags":[],"class_list":["post-2310","post","type-post","status-publish","format-standard","hentry","category-warnings"],"_links":{"self":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts\/2310","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/comments?post=2310"}],"version-history":[{"count":1,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts\/2310\/revisions"}],"predecessor-version":[{"id":4797,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/posts\/2310\/revisions\/4797"}],"wp:attachment":[{"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/media?parent=2310"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/categories?post=2310"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.cybersecurityinstitute.com\/blog\/index.php\/wp-json\/wp\/v2\/tags?post=2310"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}