JSON-based SQL injection attacks trigger need to update web application firewalls

8 December 2022

Security researchers have developed a generic technique for SQL injection that bypasses multiple web application firewalls (WAFs). At the core of the issue was WAF vendors failing to add support for JSON inside SQL statements, allowing potential attackers to easily hide their malicious payloads.

Read full article on CSO Online

Date:

8 December 2022

Categorie(s):

NEWS

Tag(s):

Databases, IT, News, SQL

Analyzing trends in cybersecurity: Funding, market consolidation and the role of AI9 May 2024
NATO and quantum computing are part of the cybersecurity agenda for IBM Consulting9 May 2024
RSAC: Three Strategies to Boost Open-Source Security9 May 2024
Nozomi Networks expands partnership with Mandiant to strengthen industrial and enterprise security9 May 2024
RSAC 2024: Securing ‘fragmented’ identities in the cloud age8 May 2024