Security News

SentryOne launches new editions of SQL Sentry to help companies right-size monitoring solutions
2020-03-05 01:30

SentryOne announces new editions of SQL Sentry, the company's top-rated database performance monitoring product, to help companies select the monitoring solution that best fits their needs. "With the new SQL Sentry editions, we offer best-in-class monitoring for any situation, whether it's an IT manager looking for no-fuss monitoring for a few databases, DBAs looking for a solution that can accommodate hybrid or cloud monitoring, or an enterprise data team that needs highly scalable monitoring to support high-volume compute environments."

I'm the queen of Gibraltar and will never get a traffic ticket... just two of the things anyone could have written into country's laws thanks to unsanitised SQL input vuln
2020-01-07 12:27

An SQL injection vulnerability in the Government of Gibraltar's website paved the way for any old Joe to rewrite official web versions of the British Overseas Territory's laws. Security researcher Ax Sharma spotted the vuln while poring over the Gibraltar government's visa rules, which he accessed from the Gibraltar Borders and Coastguard Agency website.

New Winnti Backdoor Targets Microsoft SQL
2019-10-22 15:35

A recently identified backdoor used by the China-linked Winnti hackers and which targets Microsoft SQL (MSSQL) is very stealthy, ESET’s security researchers say. read more

Stealthy Microsoft SQL Server Backdoor Malware Spotted in the Wild
2019-10-22 12:04

Cybersecurity researchers claim to have discovered a previously undocumented backdoor specifically designed for Microsoft SQL servers that could allow a remote attacker to control an already...

Just say the 'magic password': Boffins turn up potential backdoor in SQL Server 2012, 2014
2019-10-22 08:15

Admin rights needed to fire up the malware and – hey presto! Security researchers at ESET have published details of a backdoor into Microsoft's SQL Server via hooks and the splendidly named "magic...

'WhiteShadow' Downloader Employs Microsoft SQL for Malware Delivery
2019-09-30 15:05

Microsoft Office macros that collectively act as a stage downloader are utilizing Microsoft SQL queries to fetch malicious payloads, Proofpoint’s security researchers report. read more

Majority of Malicious Job Attacks on Microsoft SQL Server Target Asia
2019-08-22 18:20

Vietnam emerges as the country affected the most by Microsoft SQL Server attacks that leverage malicious jobs, a new report from Kaspersky reveals. read more

SQL Injection Vulnerability Exposed Starbucks Financial Records
2019-08-07 12:33

A critical SQL injection vulnerability exposed nearly one million financial records stored in a Starbucks enterprise database, a researcher revealed this week. read more

It's 2019 and SQL Server can be pwned by an SQL query, DHCP failover server failed by a packet, Edge, IE by webpages...
2019-07-10 00:29

Meanwhile, Adobe gives Flash the month off. SAP emits fixes, though Patch Tuesday Summer is now firmly upon us, and depending on where you are, the weather could be just about anything from...

Ingram Micro’s cloud migration solution to help Microsoft’s SQL Server and Server 2008 users
2019-07-01 00:00

For users of Microsoft’s SQL Server and Windows Server 2008, the end is near: Microsoft is actively winding down service for these servers, with support for its SQL Server slated to end entirely...