SQL Injections are the number one vulnerability exploited by hackers, by far. According to security vendor Sophos, 16,000 new websites are hit by the attacks every day. WordPress, Joomla, Drupal, .NET, classic ASP, PHPBB websites have all been hit with SQL Injections. Do NOT roll the dice on this one! Every web site big or small is vulnerable to injection by automated scripts attempting SQL-Injections through your webforms, dynamic URLs, etc.

This video from Graham Cluley of Sophos discusses the impact of a SQL Injection that hit BusinessWeek.

What can you do NOW to help secure your website?

1. Ensure all logins use strong passwords
2. Employ web form validation and/or CAPTCHA
3. If you’re using a CMS or website platform, ensure it’s up-to-date (including all plug-ins)
4. Ensure all components are current (ASPupload, etc)
5. Use static URLs instead of dynamic URLs

FireHost takes SQL Injection protection to the next level by:

1. Analyzing your website and web applications to assess the potential for SQL Injections and other hacking vulnerabilities
2. Protecting your website using our secure and transparent Web Application Firewall
3. Monitoring your website for new vulnerabilities