Security in Context: The BeyondTrust Blog

Welcome to Security in Context

Bringing you news and commentary on solutions and strategies for protecting critical IT infrastructure in the context of your business.


Posts Tagged ‘IIS’

Mass Infection via SQL Injection of IIS Websites

Posted June 9, 2010    Chris Silva

Multiple security outlets have released reports regarding a mass SQL injection attack that has compromised a large number of public websites – Google search results currently show that over 100,000 pages have been infected. This attack targets Microsoft IIS servers running both ASP and MSSQL.  The automated injection routine appears to leverage a vulnerability in…

, ,