SQL injection attacks are evolving as one of the primary modes of
transportation for malicious scripts that hackers insert into legitimate
websites. According to recent events, this method is becoming very popular
among the hacker elite, especially considering the number of sites they are
able to exploit almost overnight. Some of these victim sites include the
United Nations and the Department of Homeland Security (DHS).[1] Typically
they will use the website as a vehicle for distributing Trojans through
encoded JavaScript that a SQL injection inserted into the website.
The scary part is that the average rate of infection among “protected”
networks is anywhere from 70–75% according to research conducted by
PandaLabs on over 1,200 networks across the globe.[2] This study ... (more)
Server virtualization will become a dominant factor in the next three to five
years in an effort to reduce operating costs and simplify business. One
highly popular trend is using virtualization for data center consolidation.
Companies are consolidating everything from Web servers to the servers that
run CRM applications, all in an effort to streamline operations and create
efficiency ac... (more)
There’s no question that advances in server virtualization technology are
becoming popular among corporations that want to save money by consolidating
resources and improving operational efficiency. Virtualization enables a
dramatic increase in cost savings in ongoing maintenance and the cost
required to keep physical assets afloat. These benefits are often seen by
CIOs and other informa... (more)
As the malware threat landscape continues to evolve, hackers are continuously
changing techniques to counteract detection technologies being developed by
vendors. By using sophisticated methods to evade current antivirus
technologies, hackers are relentless in their pursuit of damaging IT systems
and oftentimes gaining access to sensitive information.
Several years ago, hackers used polym... (more)
Wireless networks and endpoints offer convenience and connectivity, but
unless properly secured, they also offer a means of egress into the network.
As evidenced by recent headlines surrounding undiscovered data breaches and
subsequent public exposure, hackers have begun to turn their eye toward
breaching wireless networks and taking advantage of the many weaknesses
incumbent. At the sam... (more)
Ryan Sherstobitoff is the Chief Corporate Evangelist at Panda Security USA (www.pandasecurity.com). He is widely recognized as a security expert throughout the country and lectures audiences across the U.S. on cybercrime trends as well as corporate risk assessments. He can be reached at ryans@us.pandasecurity.com or through the PandaLabs blog at http://pandalabs.pandasecurity.com/.
Keith Bergelt
Ricardo Aravena
Gaurav Mantri
Aditya Banerjee
John Karamitsos
Kaj van de Loo
Bob Little
Alois Reitbauer
Chris Schin
Richard Gordon
Anil Parambath
