How to Prevent SQL Injection Storm Attacks

With SQL injection attacks lurking around web servers hooked to databases (independent of vendor, but with a focus on Windows, IIS and SQL Server), Microsoft is lending a helping hand against the threat. According to the Redmond company, a new breed of attacks debuted at the end of 2007 does not show any signs of winding down. At the same time, Microsoft informed that after extensive investigating, it has determined that the SQL Injection Storm attacks are not related to security vulnerabilities in its products, patched or Zero-day, but instead to web applications designed to run on top of the databases.

The article continues at http://news.softpedia.com/news/How-to-Prevent-SQL-Injection-Storm-Attacks-87037.shtml