The first-ever US-based Radware Hacker's Challenge took place in NYC last week, daring pentesters, bug bounty hunters, and other security pros to launch attacks on a simulated network and website in a race against the clock.
Instead of stealing your data, a criminal-run bot-net is using SQL injection to insert hidden links to boost the SEO of their own dodgey sites.
Internal code imperfections have lead to cross-site scripting (XSS) and SQL injections, with 68 percent of web apps surveyed vulnerable according to application security company Netsparker.
Software vendor rushes out security patch hours after breach of infrastructure
Preventable SQL attacks need to be tackled says the ICO following a breach fine on Worldview Limited for losing customer payment details.
SQL injection to blame for Racing Post incursion
The actions of just a few gangs can signal a big shift in the industry as a whole - and strangely - the Target breach may have reduced activity by some players.