Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

SQL Injection Password Extraction Scare on Social Networking Sites

Barracuda Networks : 01 March, 2010  (Technical Article)
Barracuda Networks raises further vulnerability issues surrounding social networking sites with poor password practices being evident as well as SQL injection attacks being used recently to extract password data
Barracuda Networks has raised concerns about the security of social networking following Twitter's investigation which found that scammers rely on people not employing good password practice by using the same details over multiple sites.

According to Dr Paul Judge, Chief Research Officer and Vice President of Barracuda Networks, the bar has been raised as more vulnerabilities of social networking sites have been shown. "Scammers have been collecting passwords and user names from file-sharing sites and using these logon details to attempt access to social networking sites, such as Twitter."

Judge continued: "Although most Web users find it easier to remember a single or simple password, clearly we must think beyond that. Of course, offices should employ Web application firewalls and Web filters to shield users and the corporate network from malware, but some responsibility must fall on the users when it comes to keeping themselves safe. As evidenced by the recent RockYou passwords that were exposed when attackers extracted them by using SQL Injection, many users are not taking this seriously."
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo