Ars Technica

How security flaws work: SQL injection

Thirty-one-year-old Laurie Love is currently staring down the possibility of 99 years in prison. Love was recently told he’ll face extradition to the US, where he stands accused of attacking systems ...
Dark Reading

SQL Injection Exploits on the Upswing

Researchers have reported a new wave of SQL injection exploits over the past two weeks, and experts say it may indicate a new attack vector on corporations. No less than 15 SQL injection incidents or ...
CSOonline

JSON-based SQL injection attacks trigger need to update web application firewalls

Security researchers have developed a generic technique for SQL injection that bypasses multiple web application firewalls (WAFs). At the core of the issue was WAF vendors failing to add support for ...
Ars Technica

How security flaws work: SQL injection

A massive effort should be launched to downvote or outright remove answers that suggest string concatenation of SQL statements from places like StackOverflow and other forums.