Security News

WordPress 4.7.2 Update Fixes XSS, SQL Injection Bugs (Threatpost)
2017-01-27 20:19

WordPress fixed three security issues, including a XSS and SQL injection, with WordPress 4.7.2 this week.

An SQL Injection Attack Is a Legal Company Name in the UK (Schneier on Security)
2017-01-04 21:17

Someone just registered their company name as ; DROP TABLE "COMPANIES";-- LTD. Reddit thread. Obligatory xkcd comic....

SQL Injection Attack is Tied to Election Commission Breach (Threatpost)
2016-12-17 14:00

A hacker offered to sell an unpatched system vulnerability in the U.S. Election Assistance Commission website on the Dark Web for “thousands” of dollars.

Epic Games Forums Hacked, SQL Injection Vulnerability Blamed (Threatpost)
2016-08-23 17:09

A SQL injection vulnerability is being blamed in the hack of 800,000 users accounts for popular gaming forums run by Epic Games.