Threat Post

How to Own a Database With SQL Injection

SQL injection is the most common penetration technique employed by hackers to steal valuable information from corporate databases. Yet, as widespread as this method of attack is, a seemingly infinite ...
Ars Technica

Avoiding joins in a relational database as an application design decision

This is mitigable, but goes back to 1 since the unsharable logic is embedded in SQL. 3) It's not always clear where to put a particular query, as the result sets tend to be fairly custom as opposed to ...
dbta

Harden Your Applications to Combat SQL Injection

An important aspect of database security is designing your applications to avoid SQL injection attacks. SQL injection is a form of web hacking whereby SQL statements are specified in the fields of a ...
dbta

Dynamic SQL: On the Rise

Have you noticed that dynamic SQL is more popular today than ever before? There are a number of factors contributing to the success of dynamic SQL. Commercial off-the-shelf applications, such as SAP, ...