Dark Reading

Report: More Than 500,000 Websites Hit By New Form Of SQL Injection In '08

A new flavor of an old-school Web attack was responsible for compromising more than 500,000 Websites last year. An automated form of SQL injection using botnets emerged as the popular method of ...
CSOonline

What is SQL injection? How these attacks work and how to prevent them

Immortalized by “Little Bobby Drop Tables” in XKCD 327, SQL injection (SQLi) was first discovered in 1998, yet continues to plague web applications across the internet. Even the OWASP Top Ten lists ...