tag:blogger.com,1999:blog-804714437673009003.post853519099571689817..comments2024-02-23T09:06:13.967+00:00Comments on Dynamoo's Blog: ISC: SQL Injection mitigation in ASPUnknownnoreply@blogger.comBlogger3125tag:blogger.com,1999:blog-804714437673009003.post-65994993127398060292008-06-25T02:13:00.000+01:002008-06-25T02:13:00.000+01:00can any one of your provide some kind of advise on...can any one of your provide some kind of advise on my site www.ntuclearninghub.com seems like we have been injected by coldwop.comUnknownhttps://www.blogger.com/profile/08428136999600366671noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-17109969704604037322008-06-23T18:52:00.000+01:002008-06-23T18:52:00.000+01:00We have an IPS appliance for $300 a month which st...We have an IPS appliance for $300 a month which stops this SQL injection attack, I can ship you one today with help on cleaning your database from the attack. We have saved dozens of companies from this today alone.<BR/><BR/>www.networkcloaking.com<BR/><BR/>Thanks,<BR/><BR/>Greg Martin<BR/>Director of Security<BR/>Sentinel IPSGreg Martinhttps://www.blogger.com/profile/11631833625444365559noreply@blogger.comtag:blogger.com,1999:blog-804714437673009003.post-28966515323579367532008-06-23T18:01:00.000+01:002008-06-23T18:01:00.000+01:00Latest attack vector:I have looked through my clie...Latest attack vector:<BR/><BR/>I have looked through my client's logs and found the code that was executed with the injection. This occurred on a site that I didn't develop, but had started hosting during the transition to a new site design/architecture.<BR/><BR/>Basically the attacker is executing a query on the database looking for text type fields in the hopes that the field is HTML. Armed David Zhttps://www.blogger.com/profile/03964308899798200614noreply@blogger.com