GIGAZINE

SQL injection vulnerability in PostgreSQL went undiscovered for over nine years and was used to break into the US Treasury Department

On December 30, 2024, a 'Chinese government-sponsored advanced persistent threat actor' breached a system managing confidential data for the U.S. Treasury Department. It was discovered that the ...
Built In Chicago

Chatting with developer Frank Korf about SQL injection, the attack used to breach the Illinois State Board of Elections

Eddie VanBogaert, Head of Sales: Here in Illinois, the release of stolen emails from the Democratic National Committee isn’t the only news headline to involve both information security and the ...
TechRepublic

SQL Server 2022: Here’s what you need to know

SQL Server 2022: Here’s what you need to know Your email has been sent Three decades on, SQL Server is still a database workhorse that powers both an internal line of business applications and ...
Threat Post

The Inside Story of SQL Slammer

On Jan. 25, 2003, a new worm took the Internet by storm, infecting thousands of servers running Microsoft’s SQL Server software every minute. The worm, which became known as SQL Slammer, eventually ...
Developer Tech

Google rebrands open-source ZetaSQL project to GoogleSQL

Google has renamed its open-source ZetaSQL project to GoogleSQL, unifying the branding for the SQL dialect, analysis, and parsing libraries.
ZDNet

Improve dynamic SQL performance with binds

Developers often dismiss dynamic SQL used in PL/SQL programs for two reasons. One reason is that it's riskier because the SQL statements aren't parsed until runtime, so it's more difficult to catch ...