The SQL Injection: Staying Up-To-Date
An SQL Injection is a malicious query given to a database designed to return information not permitted to normal users, for example someone would use an SQL Injection to return sensitive patient...
View ArticleRainbow Tables: Why Good Passwords Save You
When HB Gary was attacked with an SQL Injection to retrieve user sensitive information, only half the job was accomplished. The user data containing the passwords was encrypted with a hash by means of...
View ArticleSocial Engineering: Why Loose Lips Sink Ships
The last part of the HB Gary attack was the social engineering phase brought in to extract user information relating to a sister organization. Social engineering is the practice of posing as a figure...
View ArticleHB Gary: Cold Case?
Over the course of the HB Gary attack we learned a great many shocking lessons about security standards and how well they are applied in our previous articles. In the wake of the attack, with all the...
View Article
More Pages to Explore .....