Security Protection – Harry Waldron MVP Rotating Header Image

Lilupophilupop SQL injection attacks infect over one million pages

Webmasters and administrators should look for any signs of infection from this new SQL injection attack.  In many cases SQL attacks are mitigated through more secure programming conventions. Wild card character processing may allow more openess and convenience in user input, but may also allow SQL injection vulnerabilities).

Lilupophilupop SQL injection attacks infect over one million pages http://isc.sans.org/diary/Lilupophilupop+tops+1million+infected+pages/12304
http://isc.sans.edu/diary.html?storyid=12127

QUOTE: Earlier in the month we published an article regarding the lilupophilupop SQL injection attack. I though it might be a good time to reflect on this attack and see how it is going.  When I first came upon the attack there were about 80 pages infected according to Google searches.  Today, well as the title suggests we top a million, about 1,070,000 in fact (there will be duplicate URLs that show up in the searches. Still working on a discrete domain list for this).

Comments are closed.