Dark Reading

Bots Use SQL Injection Tool in New Web Attack

A little-known botnet has put a different spin on the recent wave of SQL injection attacks on thousands of Websites: It’s outfitting its bots with its own tool to launch SQL injection attacks on ...
Dark Reading

New SQL Injection Tool Makes Attacks Possible from a Smartphone

Like a lingering cold, SQL injection continues to plague the enterprise with no end in sight. Researchers have found that the latest SQLi hits to some organizations have come by way of a new hacking ...
Threat Post

Telegram-Controlled Hacking Tool Targets SQL Injection at Scale

The Katyusha Scanner can find SQL injection bugs at scale, and is managed via the Telegram messenger on any smartphone. A black market hacking tool has the potential to rapidly conduct website scans ...
SiliconANGLE

New hacking tool that targets websites uses an easy smartphone interface

A new hacking tool operated via a smartphone to hijack websites is being praised on forums on a shady part of the Internet for its ease of use and ongoing support. It’s called the “Katyusha Scanner,” ...
CSOonline

What is SQL injection? How these attacks work and how to prevent them

Immortalized by “Little Bobby Drop Tables” in XKCD 327, SQL injection (SQLi) was first discovered in 1998, yet continues to plague web applications across the internet. Even the OWASP Top Ten lists ...