Half a million Microsoft-powered sites hit with SQL injection
Security
By Wired
Monday, April 28, 2008 17:08
A new SQL injection attack aimed at Microsoft IIS web servers has hit some 500,000 websites, including the United Nations, UK Government sites and the U.S. Department of Homeland Security. While the attack is not necessarily Microsoft's fault, it is unique to the company's IIS server.