Establishing Digital Trust: Don't Sacrifice Security for Convenience
Hacker D35m0nd142 recently breached the official Web site for the UK's Royal Navy after uncovering a SQL injection vulnerability.
"'The admins have been warned immediately before of this post. The vulnerable 'parameter' has been obscured to prevent damages from others,' the hacker wrote on Pastebin," writes Softpedia's Eduard Kovacs.
"D35m0nd142 also found a vulnerability on the official website of the US Federal Reserve," Kovacs writes. "In this case, he found not one, but 47 blind SQL injection flaws on the site’s pages."
Go to "Royal Navy, Federal Reserve and Other Sites Hacked by D35m0nd142" to read the details.https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.