Intermediary transaction http://www.aliyun.com/zixun/aggregation/6858.html ">seo diagnose Taobao guest stationmaster buy cloud host technology Hall
According to a Taiwanese security company, Armorize Technologies, the website of China (including mainland and Taiwan) is suffering from a massive SQL injection attack, and thousands of websites have been implanted with malicious programs.
The security company's CEO, Huang Yaowen, said the first time the attack was detected was May 13, from a domestic server cluster, and that the attacker did not attempt to hide its IP address. According to Huang, the attack is still ongoing, because an attacker uses brute force attack (brute force) SQL injection on each attack surface, it can cause permanent changes to the compromised Web site, so even if a malicious program cannot successfully be plugged into the target site, they could destroy many sites.
In SQL injection attacks, an attacker would find a vulnerability to a Web site's background database by constantly trying the SQL code entered in a site's input field, such as a user login box, and if the vulnerability were successfully identified, the attacker would gain access to the database data and be able to run malicious code on the site. An attacker has no specific attack target, and is not specifically targeted at a particular type of vulnerability. They use an automated SQL injection attack engine that can attack any Web site that uses SQL code in some form. Attackers use SQL injection to infect targeted sites and implant malicious programs that further exploit vulnerabilities in browsers that access infected Web sites and continue to search for the next attack target. Details related to malicious programs are not available at this time, including information such as exploited browser vulnerabilities.
The website of the Hsinchu Memorial Hospital in Taiwan was subjected to such SQL injection attacks, according to a code technology provided by the screen shows that the text of the Web page was replaced by HTML garbled, resulting in most of the content can not read normally. Thousands of sites have been affected, with 10,000 servers being attacked by malicious programs alone in the Friday. Most of the servers involved are mainland, and some are located in Taiwan, including the famous real estate website SouFun (www.Soufun.com) and the Shenzhen Auto World Network (www.mycar168.com).
Large-scale SQL injection attacks are increasingly becoming a potential threat to network and database security. Many people believe that the so-called "first wave" of SQL injection attack in January this year is fresh in memory, thousands of PC users have become victims, the attack tide mainly exploited the Microsoft SQL Server database a vulnerability. And recent IBM security researchers have warned that the surge in the "Third wave" SQL injection attack has been launched (see this site), its threat far more than the previous attack, I hope we can do a good job of prevention measures.
Connection: www.xyfzl.com.cn