Ars Technica

Overcoming rudimentary SQL injection protection

I'm in the process of documenting the many ways in which an application is terrible. One of those ways is that it's vulnerable to SQL injection. It's not completely open, but you can manipulate a few ...
CSOonline

What is SQL injection? How these attacks work and how to prevent them

Immortalized by “Little Bobby Drop Tables” in XKCD 327, SQL injection (SQLi) was first discovered in 1998, yet continues to plague web applications across the internet. Even the OWASP Top Ten lists ...
Redmond Magazine

Microsoft's SQL Injection Protection

Homer Simpson may have enjoyed his hot beef injections (for Homer these were hot dogs), but he would be far less fond of SQL injections, attacks upon SQL Server that can cripple Web sites. Many with ...
CSOonline

Waratek takes on SQL injections with new RASP approach

Companies looking to protect their Web applications from SQL injection attacks typically install a firewall in learning mode and train it to recognize attacks. It’s not a perfect solution, but it’s ...