You MUST Protect your Databases from Insider Attacks. Now.

Your company’s data protection measures are probably focused on defending the perimeter from outside hackers, which is certainly important. But did you know that the fastest-growing threat of IT breaches and data theft today is the use of authorized user access to sensitive corporate resources? In fact, according to Verizon’s 2013 Data Breach Investigations Report, […]

Read More

eCommerce sites: Preventing insider threats

Every day we see headlines with data breaches on major eCommerce sites, including Target, Living Social, LinkedIn, and JC Penny. How is this happening? All of these sites use Web Application Firewalls (WAF) and secure connections. The answer is that most attacks on eCommerce sites are insider attacks, just as 80% of data breaches in […]

Read More
Pass Summit 2014 Sponsor

PASS the SQL Server, and don’t pass up the prizes

We’re having a blast at the PASS Summit this year. If you haven’t been by our booth, you’ve been missing out on some high-risk behavior from the risk-elimination people at GreenSQL. We’ve got a prize wheel and we ain’t afraid to spin it. You can win free Amazon bucks, free software, and of course, our […]

Read More

Achieving Compliance in the Cloud

Cloud-hosted databases can offer great benefits for organizations in terms of high availability, flexibility, rapid provisioning, cost-effectiveness, and even security. You can subscribe to Database as a Service (DBaaS) from the major vendors, and a number of vendors are also offering compliance as a service. However, it’s important to know exactly what you are getting. […]

Read More

The wake-up call heard around the web: Drupal 7 SQL Injection Vulnerability

Everyone is talking about the discovery of an SQL injection vulnerability found in Drupal 7. But let’s not focus on how it was discovered. Let’s focus on what we can learn from it. Organisations must shift their protection emphasis to the database level. Updates and patches are just a cat-and-mouse game, and if you don’t […]

Read More

Updating the guidelines for preventing SQLi attacks

Are you following the same guidelines and measures for SQL injection prevention that have the norm for the past decade? If those guidelines were so great, we wouldn’t have seen breaches in 2014 at Adobe, NASA, Yahoo, Living Social, Domino’s Pizza, the FBI, LinkedIn Sony Pictures, Diners Club, Nokia, NASDAQ, Wetseal, and JC Penny… the […]

Read More