Around The Web

TOM'S HARDWARE
Imperva: 71 SQL Injection Attacks Per Hour Since July
SQL injection is still one of the bad guys' favorite means to break into databases and other IT infrastructure for which they shouldn't have access

NBC MIAMI
Smiley Face Emoticon Triggers FIU Data Scare
Officials at Florida International University discovered a potential compromise of a database containing personal and academic information about 19,500 students when they found someone had typed a smiley face emoticon on the database's internal website

INFORMATIONWEEK GOVERNMENT
NSA Submits Open Source, Secure Database To Apache
Accumulo, a secure database technology first developed by the National Security Agency, was recently submitted to the Apache Foundation for incubation as an open source project. Known best for its fine-grained access control, Accumulo offers cell-level security, a rarity in the database world

NETWORK WORLD
Database Security Needs Improvement
According to recent research, 95 percent of enterprise organizations consider database security amongst their top 10 information security challenges

BLOOMBERG
Sensitive Data, Systems At Risk In U.S. Agencies, GAO Says
A new report out by the Government Accountability Office shows that in spite of FISMA regulations, government data stores are still at risk of exposure. The GAO says that most of the 24 federal agencies it reviewed recently have weaknesses in access controls and monitoring

INFORMATION WEEK
Tennessee BlueCross BlueShield Encrypts All Its Data
BlueCross/BlueShield of Tennessee recently completed a $6 million encryption deployment that has it encrypting every byte of data at-rest across its entire enterprise

BBC
Social Landlords Rapped For Putting London Tenants' Data At Risk
A contractor was recently publicly shamed for copying information on more than 26,000 tenants of a London housing association onto a memory stick and leaving it in a pub

MSNBC
Malware May Have Exposed Student, Staff Data
The Social Security numbers of 75,000 past and present students and staff at the University of Wisconsin-Milwaukee were potentially exposed in data breach that happened in late June following a malware infection on a server hosting a database containing the information

SEARCHSECURITY.CO.UK
Gartner: Corporate Privacy Policy Requirements Demand Urgent Review
Gartner predicts that 50 percent of all enterprises will revise their corporate privacy policy requirements by the end of 2012

INFORMATION MANAGEMENT
Innovating In Data Protection
New improvements make end-to-end encryption easier to deploy without interfering with normal operation of complex database environments

BANGOR DAILY NEWS
Maine Voter Registration System Breached
Maine's Central Voter Registration system was compromised when a computer at a town office was infected by malware

GIGAOM
GreenSQL Gets $5.9m For Database Security
GreenSQL recently bumped up a venture round in which it was looking for $3.8 million to pick up a total of $5.9 million to help it develop its software designed to protect databases from SQL injection attacks

IT BUSINESS NET
Strike Back At SQL Injections
Paul Litwin, programmer manager at the Fred Hutchinson Cancer Research Center offers advice on identifying and thwarting SQL injection attacks against applications and the databases that they touch

INTERNATIONAL BUSINESS TIMES
'Apple Cloud Be A Target, Too," Says Hacker Group Anonymous
Using what many believe to be a SQL injection attack, hacker group Anonymous busted into Apple resources as a part of its greater initiative to prove lax security at various global corporate entities

FINEXTRA
Phony Bitcoins Caused MT Gox Virtual Currency Crash
After breaking into a Bitcoins admin account using SQL injection, a hacker was able to flood the Bitcoins market with bogus Bitcoins to temporarily dampen their value and buy up real Bitcoins dumped by their owners before the attack was discovered

INFOSECURITY.COM
SQL Injection Most Dangerous Threat, According To CWE/SANS List Of Top Software Flaws
List also shows OS command injection and classic buffer overflow are making a comeback

FREDRICKSBURG PATCH
Data Security Lapse Exposes Info Of 7,500 UMW Students
The sensitive information of thousands of University of Mary Washington students was exposed on the school's internal network when a file containing the information was posted on UMW's intranet

PCWORLD
Senators Push For Privacy, Data Security Legislation
Legislators are reigniting talks to get a new federal data breach law passed that will mandate data breach notification and also require firms to have processes in place for safe erasing of personal information contained within their databases

PIVOTPOINT SECURITY
Database Security Roadmap
Security consultancy PivotPoint created a one-page best practices guide for database security to help executives and other decision-makers when coming up with a sane database security strategy

REUTERS
Sega Says 1.3 Million Users Affected By Cyber Attack
Sony isn't the only big gaming company to be stung: Sega recently announced it was the victim of an attack that had the sensitive information of 1.3 million users stolen from its database