Immortalized by “Little Bobby Drop Tables” in XKCD 327, SQL injection (SQLi) was first discovered in 1998, yet continues to plague web applications across the internet. Even the OWASP Top Ten lists ...

Don Boxley, CEO and Founder of DH2i, spent some time with me recently to discuss his company and DxConsole and DxTransfer. The company's goal is addressing the product limitations of Microsoft's SQL ...

I have written an application that takes in a fixed-width file (thanks in no small part to advice I recieved in a seperate thread) and then dissasembles each line, runs a fairly meaty SQL SELECT query ...

The danger of SQL injection last week hit the limelight once again when the British Royal Navy's website was shut down temporarily in response to an attack that had Royal Navy brass wondering whether ...

There has been a lot of interest lately in NoSQL databases and, of course, many of us have strong backgrounds and experience in traditional relational "SQL" databases. For application developers this ...

The Honeynet Project, a non-profit organization that develops open-source security research tools, has created a component for the Glastopf Web application honeypot software that can emulate ...

For more than a decade, injection vulnerabilities have literally topped the charts of critically dangerous software flaws, deemed more serious than all other types of vulnerabilities in the 2010, 2013 ...

Security researchers have developed a generic technique for SQL injection that bypasses multiple web application firewalls (WAFs). At the core of the issue was WAF vendors failing to add support for ...

One of the critical decisions facing companies embarking on big data projects is which database to use, and often that decision swings between SQL and NoSQL. SQL has the impressive track record, the ...

I use a GUI front end to an SQL server database to do my job, and the program that is used to access the database is very old, made by Sybase, and is dated 1997. Sybase Adaptive Server Anywhere 6.0 is ...