Database News

Top Articles

Hover to load posts
Features

Top Articles

Hover to load posts
Scripts

Top Articles

Hover to load posts
Mysql

Top Articles

Hover to load posts
MS SQL

Top Articles

Hover to load posts
Oracle

Top Articles

Hover to load posts
MS Access

Top Articles

Hover to load posts
DB2

Top Articles

Hover to load posts
PostgreSQL

Top Articles

Hover to load posts
SAP

Top Articles

Hover to load posts
PHP

Top Articles

Hover to load posts
Forums Forums

Top 10 Database Vulnerabilities as Seen by Team SHATTER at Application Security Inc.

Written By

Jul 13, 2010

1 minute read

Team SHATTER (Security Heuristics of Application Testing Technology for Enterprise Research) as pulled together the top 10 database vulnerabilities, recently posted on the Net as a slide show, and gone one step further and started a series of blog postings to give further detail; keeping you up to date on trends, risk, and remediation. Currently on Vulnerability 8 of 10, these top 10 include:

Default, Blank & Weak Username/Passwords
SQL Injections
Extensive User/Group Privileges
Unnecessary Enabled Database Features
Broken Configuration Management
Buffer Overflows
Privilege Escalation
Denial of Service Attacks
Unpatched Databases
Unencrypted Sensitive Data – at Rest and in Motion

DatabaseJournal.com Staff

Recommended for you...

MySQL

Best Certifications for Database Administrators

Database administrators are responsible for the day to day management of database environments, including relational databases management systems, cloud databases, or those used for database-driven web applications. Database administration is a great career choice, with plenty of employment options and (typically) a great salary. The competition for DBA jobs can be fierce, however, and, as […]

Ronnie Payne

Oct 14, 2022

Database News

Become More Efficient at Writing TSQL by Creating Code Snippets

A TSQL code snippet is a set of code that performs a task that can easily be placed in your TSQL code using SQL Server Management Studio (SSMS). Snippets are a great way to jump start creating a fragment of TSQL code for common types tasks, like creating a table, a stored procedure, a trigger, […]

Gregory Larsen

Jun 30, 2021

Database News

Line Numbers in SQL Server Management Studio

Have ever tried to debug a chunk of TSQL code (like a stored procedure) and found yourself trying to figure out which TSQL statement is at a particular line number? By default, SQL Server Management Studio (SSMS) doesn’t display numbers. But that is only the default, you can change it. To allow your Query window […]

Gregory Larsen

Sep 4, 2018

Database News

Couchbase Raises $60 Million to Fuel NoSQL Database Efforts

It takes a lot of money to build a database company in an industry dominated by giants like Oracle, Microsoft and IBM. It’s a lesson that open-source NoSQL database startup Couchbase knows well as it continues to raise funding to build its business. Couchbase officially announced on June 26 that it has raised an E […]

Sean Kerner

Jun 30, 2014

DatabaseJournal.com publishes relevant, up-to-date and pragmatic articles on the use of database hardware and management tools and serves as a forum for professional knowledge about proprietary, open source and cloud-based databases--foundational technology for all IT systems. We publish insightful articles about new products, best practices and trends; readers help each other out on various database questions and problems. Database management systems (DBMS) and database security processes are also key areas of focus at DatabaseJournal.com.

Top 10 Database Vulnerabilities as Seen by Team SHATTER at Application Security Inc.

DatabaseJournal.com Staff

Company

Categories