View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Cybersecurity
January 21, 2015updated 19 Aug 2016 12:22pm

SQL injection vulnerabilities reach three year high

2014 witnessed 104% more vulnerabilities detected than in 2013.

By CBR Staff Writer

A new report by DB Networks reveals a major uptick in SQL injection vulnerabilities in publicly launched software packages in 2014, reaching their highest levels in three years.

Analysing the National Vulnerability Database figures, the report added that 2014 witnessed the most SQL vulnerabilities detected since 2011, with 104% more than vulnerabilities detected than in 2013.

DB Networks CTO Dave Rosenberg said: "Despite the best efforts of project managers, software development nearly always runs headlong into time and cost constraints."

"When the clock is ticking, it seems security testing is among the first tasks to be shunted aside."

The report seeks identification of SQL injection vulnerabilities are identified and patched in software packages before the vulnerability gets exploited by hackers.

The impact of SQL injection vulnerability in popular software package could be massive, with a flaw detected in the Drupal content management software affecting over a million web sites last October.

Another study by the Ponemon Institute noted that several businesses were not on pace to deal with the latest cyber threats, with several of them still unaware that their Web Application Firewalls could be defeated easily.

Content from our partners
Green for go: Transforming trade in the UK
Manufacturers are switching to personalised customer experience amid fierce competition
How many ends in end-to-end service orchestration?

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.
THANK YOU