Barney's Blog

Blog archive

All I Want for Christmas Is a SQL Injection

The holidays were a bit strange this year. The economy was tough, malls were empty, and we in America awaited a new and very different presidential administration.

My own family here in North Central Massachusetts also had an odd time. Due to a massive ice storm and an inept power company, our electricity went out and I had no heat for 15 days. It didn't crank back up 'til the day after Christmas (though many, including the elderly and poor, had it far worse than I did, so no complaints here). My family huddled around a space heater on Christmas morning and were none the worse for wear.

But Christmas wasn't entirely without gifts. Wall Street had $700 billion to play with, our next president talked about an extra trillion dollars or so a year in federal spending (deficit, what deficit?) and hackers blessed the world with a new SQL injection attack.

Apparently, no systems were actually hit and no patch has been released. The news leaked out only because a security researcher let it out, leading experts to rightly criticize the disclosure.

Posted by Doug Barney on January 07, 2009


Featured

  • Microsoft Appoints Althoff as New CEO for Commercial Business

    Microsoft CEO and chairman Satya Nadella on Wednesday announced the promotion of Judson Althoff to CEO of the company's commercial business, presenting the move as a response to the dramatic industrywide shifts caused by AI.

  • Broadcom Revamps VMware Partner Program Again

    Broadcom recently announced a significant update regarding its VMware Cloud Service Provider (VCSP) program, coinciding with the release of VMware Cloud Foundation (VCF) 9.0, a key component in Broadcom’s private cloud strategy.

  • Closeup of the new Copilot keyboard key

    Microsoft Updates Copilot To Add Context-Sensitive Agents to Teams, SharePoint

    Microsoft has rolled out a new public preview for collaborative "always on" agents in Microsoft 365 Copilot, bringing enhanced, context-aware tools into Teams channels, meetings, SharePoint sites, Planner workstreams and Viva Engage communities.

  • Windows 365 Cloud Apps Now Available for Public Preview

    Microsoft announced this week that Windows 365 Cloud Apps are now available for public preview. This aims to allow IT administrators to stream individual Windows applications from the cloud, removing the need to assign Cloud PCs to every user.