Comments on: SQL injection used in the largest data security breach in U.S. history to date http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/ Acunetix Web Application Security Blog Fri, 10 Feb 2012 07:58:15 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Mike http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/#comment-2499 Mike Fri, 06 Nov 2009 17:18:51 +0000 http://www.acunetix.com/blog/?p=714#comment-2499 I can understand them being able ot bypass security and steal the info (we all know that data protection is one of the stiffest cahllenges facing any corporation), but why was the data they stole unencrypted? They should have stolen a big pile of inaccessible data, not millions of usable credit card numbers. I can understand them being able ot bypass security and steal the info (we all know that data protection is one of the stiffest cahllenges facing any corporation), but why was the data they stole unencrypted? They should have stolen a big pile of inaccessible data, not millions of usable credit card numbers.

]]> By: SQL injection used in the largest data security breach in U.S. history to date at Web 2.0 Designer http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/#comment-2289 SQL injection used in the largest data security breach in U.S. history to date at Web 2.0 Designer Wed, 21 Oct 2009 04:13:59 +0000 http://www.acunetix.com/blog/?p=714#comment-2289 [...] Read the original here: SQL injection used in the largest data security breach in U.S. history to date [...] [...] Read the original here: SQL injection used in the largest data security breach in U.S. history to date [...]

]]> By: Kush http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/#comment-1920 Kush Tue, 15 Sep 2009 21:26:21 +0000 http://www.acunetix.com/blog/?p=714#comment-1920 Wow, the comments must come from some really p*ssed of people. Have been burnt before perhaps? I think where there is a will, there is a way. You can never be a 100% fool proof, but sites and tools like this one are pretty useful in getting there... Wow, the comments must come from some really p*ssed of people. Have been burnt before perhaps?

I think where there is a will, there is a way. You can never be a 100% fool proof, but sites and tools like this one are pretty useful in getting there…

]]> By: Robert http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/#comment-1904 Robert Thu, 10 Sep 2009 12:30:55 +0000 http://www.acunetix.com/blog/?p=714#comment-1904 Agreed. That is why it is very important to use tools to train and educate developers, especially in the security field. Agreed. That is why it is very important to use tools to train and educate developers, especially in the security field.

]]> By: Betan Testravosky http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/#comment-1900 Betan Testravosky Wed, 09 Sep 2009 06:06:27 +0000 http://www.acunetix.com/blog/?p=714#comment-1900 Most coders are so sloppy in their personal work ethic anymore, it's all a really bad joke. I don't care if the bloke is a Linux, Windows, or mainframe Cobol programmer ... the entire lot of them are getting pathetic. Half the time they're using canned code and routine libraries bought from somewhere else that they have no idea how it works. These new Playstation/XBox/Wii era programmers can't even pseudo-code or flow chart anymore. I tell you, OS and application development has gone down the ol' poop tube if you asked me the last few years from the lazy lot who call themselves programmers. Securing code? Checking for buffer overflows? Security and error checking is the last thing on their minds. They're happy if it just compiles and then they go "job done" ... Most coders are so sloppy in their personal work ethic anymore, it’s all a really bad joke. I don’t care if the bloke is a Linux, Windows, or mainframe Cobol programmer … the entire lot of them are getting pathetic. Half the time they’re using canned code and routine libraries bought from somewhere else that they have no idea how it works. These new Playstation/XBox/Wii era programmers can’t even pseudo-code or flow chart anymore. I tell you, OS and application development has gone down the ol’ poop tube if you asked me the last few years from the lazy lot who call themselves programmers. Securing code? Checking for buffer overflows? Security and error checking is the last thing on their minds. They’re happy if it just compiles and then they go “job done” …

]]> By: ardenthash http://www.acunetix.com/blog/news/sql-injection-used-in-largest-data-security-breach-in-u-s-history/#comment-1779 ardenthash Thu, 20 Aug 2009 23:56:18 +0000 http://www.acunetix.com/blog/?p=714#comment-1779 well, tbh...thats what those companies get for not securing their code. Also, it is rhetorically idiotic to store customer's credit card information. Isn't this against privacy laws in certain countries? Oh well, I assume that the fearmongering that us hackers are "evil". Good job at smearing our title whitehats...good job. well, tbh…thats what those companies get for not securing their code. Also, it is rhetorically idiotic to store customer’s credit card information. Isn’t this against privacy laws in certain countries? Oh well, I assume that the fearmongering that us hackers are “evil”. Good job at smearing our title whitehats…good job.

]]>