Hi everyone, Bryan here. Michael wrote a great post here on SDL-required SQL injection defense techniques in the wake of the recent mass SQL injection attacks against ASP sites. Additionally, the Security Vulnerability Research & Defense blog has just posted an analysis of the attack along with guidance recommendations for IT/database admins, web developers, and end users. Finally, if you are looking for classic ASP-specific (not ASP.NET) guidance, Bala Neerumalla has posted a detailed document on preventing SQL injection in ASP on MSDN.
Use Microsoft Fix it to update Windows XP
Microsoft is aware of a vulnerability that affects only Windows XP and Windows Server 2003. … Read more »
Watch our new rogue security software videos
If you’ve ever seen suspicious pop-up ads with urgent warnings to download security software, you’re … Read more »
Microsoft won’t ask for your credit card to unblock your email account
Tom asks: I’m getting messages from Microsoft about my email account. The messages say that … Read more »