new chinese sql website attack has begun

[aedipuss]

webmasters watch your sites carefully. a new massive attack has begun using a new sql injection tool.

http://www.darkreading.com/security/attacks/showArticle.jhtml?articleID=212001872

make sure your sql is fully patched and there are no unfiltered input statements.

[ahhaa]

there's this also:

Online networks suffered their heaviest brute force attacks to date this year, with more sites than ever coming under sustained assault. IP networks were bombarded by Distributed Denial of Service (DDoS) attacks – attempts to make networks unreachable by flooding them with traffic – as intense as 40Gbps, a survey of 70 IP network operators worldwide has claimed. The report by Arbor Networks says that the largest sustained attacks in the last two years were 24 Gbps and 17 Gbps, a 67 per cent increase in attack scale over last year.
http://news.zdnet.com/2424-9595_22-248590.html

[aedipuss]

i've noticed a significant increase in ping times to most sites lately. if the crap continues to flow this heavily, everyone may experience long delays getting to any website.

service packs and updates need to be installed by everyone. old outdated os's and browsers need to be banned.

i hate say it, but it's time to have a traffic cop at every isp that denies net access to unprotected users.

[MJA]

the sad thing most of the hacks/DoS crap is gov sponsored.

we really need to evaluate our trade/businesses with china.hit them where it hurts

[isogonic]

having the latest 3rd party applications will help also. after you visit windows updates go here next:
http://secunia.com/vulnerability_scanning/online/