SEARCH RESULTS
 
Showing 1-10 of 33 records
 
Expand article

IT Security Ask the Experts: Top Queries, March 2008

2008-04-04 11:03:01 by Editor in IT Security - The IT Security Industry's Web Resource
 
IT Security's Ask the Experts section is primarily intended as a clearinghouse for technical queries, and we are still fielding quite a few. But we continue to receive a broad variety of fascinati
 
Tags: broad variety, security, experts section, technical queries, primarily, receive, continue, fascinati, clearinghouse
 
 
 
 
Expand article

Giving SQL Injection the Respect it Deserves

2008-05-15 18:45:00 by sdl in The Security Development Lifecycle
 
...Queries Use Stored Procedures Use SQL Execute-only Permission Use SQL Parameterized Queries From the SDL documentation Applications accessing a database must do so only using parameterized queries Creating dynamic queries using string concatenation potentially allows an attacker to execute an arbitrary query through the application. This...
 
Tags: sql, sql injection bug, sql injection requirements, sql injection attack, sql server, sql execute-only permission, malicious sql payload, sql injection, sql injection vulnerability
 
 
 
 
Expand article

Clouding and Confusing the CEP Community

2008-04-20 11:16:38 by Greg Reemler in The Complex Event Processing Blog
 
...queries andtime seriesanalysis across sliding time windows of streaming data There is nothing dishonorable about forward chainingusingcontinuous queries andtime seriesanalysis across sliding time windows of streaming data There is nothing wrong with forward chainingusingcontinuous queries andtime seriesanalysis across sliding time windows of...
 
Tags: event cloud, event, event relationship, event data, event stream, event types, event streams, streamof market data, market data
 
 
 
 
Expand article

More High Profile Sites IFRAME Injected

The Article has images
2008-03-12 09:49:36 by HASH0x8b74b5c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...queries through 85.255.x.29 or 85.255.x.121. If you use a static IP address, CA AntiSpyware will set your DNS server to 198.6.1.1 to prevent your DNS queries from continuing to go through the rogue DNS servers. Please change your DNS server to the DNS server provided by your IP or Network Administrator What this means is that known Russian...
 
Tags: info, info txmwxb, info kbsxet, info bhrsaa, info sezejc, info cgjttz, info wmtwes, info cqqxkh, info qwhhxq
 
 
 
 
Expand article

SQL injections compromise Balmar e-commerce site

The Article has images
2008-06-23 22:07:43 by Evan Francen in The Breach Blog
...queries on the main page of our e-commerce website from an IP address in Viet Nam Evan] I am pleased to read that Balmar had/has implemented enough logging to determine the type and source of the attack. I am curious to know why the e-commerce site was under attack from March 27th until as late as April 30th without detection? Either the...
 
Tags: information, personal information, sensitive information, balmar, sensitive customer information, breach description, breach, balmar e-commerce site, security breach
 
 
 
 
Expand article

The reason behind the "We're sorry..." message

2007-07-09 11:54:00 by Niels Provos in Google Online Security Blog
 
...queries from your network. As a regular user, it is possible to answer a CAPTCHA - a reverse Turing test meant to establish that we are talking to a human user - and to continue searching. However, automated processes such as worms would have a much harder time solving the CAPTCHA. Several things can trigger the sorry message. Often it's due...
 
Tags: web servers, vulnerable web servers, message, google, worms, google displays, worms pdf, queries, detect anomalous queries
 
 
 
 
Expand article

An Overture to the 2007 CEP Blog Awards

2008-01-09 11:09:46 by Tim Bass in The Complex Event Processing Blog
 
...queries over sliding time windows. High performance, lowlatency event processingis one of the main design goals for many stream processing engines Continuous queries over event streams are genenerally designed to beexecuted in milliseconds, seconds and perhaps a bitlonger time intervals. Process-driven event processing, on the other hand, can...
 
Tags: term intelligent event, term, intelligent event, event, event processingand, event stream, event streams, category ai-capable event, event processingwill
 
 
 
 
Expand article

Massive Blackhat SEO Targeting Blogspot

The Article has images
2008-02-17 22:53:13 by HASH0x8ad5e0c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...queries that led to visiting them into firesearch.sc . What's also worth mentioning about this campaign is that the firesearch.sc's javascript search field appears at the top of every blog, whereas the blog's content itself consists of outgoing links to nearly fifty other such automatically registered blogs, again redirecting the search...
 
Tags: blogspot, blogspot accounts directly, entire operation, operation, content, blogs, sample blogs, firesearch, real-time content
 
 
 
 
Expand article

ZDNet Asia and TorrentReactor IFRAME-ed

The Article has images
2008-03-04 09:15:20 by HASH0x8b3f7c8 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...queries jamie presley mari misato risa coda kasumi tokumoto jill criscuolo The IFRAME is loading 72.232.39.252/a also responding to themaleks.net . The link itself is loading an obfuscated javascript, which once deobfuscated attempts to load a-n-d-the.com/wtr/router.php (216.255.185.82 - INTERCAGE-NETWORK-GROUP2) also responding to...
 
Tags: iframe, zdnet asia, pages, pages redirect, iframe-ed pages, torrentreactor, iframe-ing tactic remains, seo practices, torrentreactor seo practices