 |
 |
|
|
|
 |
|
Home |
News & Events
Overview
|
Press ReleaseMedium-Size Financial Services Firms Targeted by SQL Injection AttacksOn-Demand IT Security Company Alert Logic Finds SQL Injection Attacks Account for Up to 90 Percent of Monthly Threats to SMB Financial Firms HOUSTON - AUGUST 29, 2006 - Alert Logic, the only IT network security company leveraging a Software-as-a-Service (SaaS) platform to deliver on-demand protection to mid-sized businesses,reports that SQL injection attacks comprise the overwhelming majority ofattacks on medium-size financial firms it provides network protection for. While SQL injection attacks typically make up 20 percent of attacks aimed at other SMB markets, Alert Logic has found that SQL injection attacks account for 90 percent of attacks logged against its financial clients over the past quarter. SQL injection attacks leverage software vulnerabilities to insert malicious code into databases - they cannot be stopped by firewalls because they appear to be legitimate network traffic. If the breach is successful, hackers are potentially able to read files stored in sensitive databases. For financial services companies, breaches in database security are among the most damaging attacks faced due to the sensitive nature of data stored in financial firm databases. The overwhelming number of SQL injection attacks aimed at financial services firms, discovered through Alert Logic's 24X7 network surveillance service, is further evidence of the specific targeting of SMBs by hackers and criminal organizations. In the past, most email-borne IT threats were designed to hit as many companies as possible, regardless of their size or business niche. Criminal organizations have changed those tactics to specifically target SMBs, who often depend solely on firewalls for network protection and as a result are not sufficiently protected from well-designed attacks tailored for individual business sectors, such as financial services. Chris Smith, vice president of marketing for Alert Logic, commented: "Any lingering thoughts that SMBs had regarding their ability to be under the radar for these criminal hacking groups should be gone. SQL injection attacks are the best way to get to database information and for financial services firms, database information is the most sensitive. Any medium-size financial services company depending on firewall and antivirus protection alone is not sufficiently protected and has probably already been breached." SQL injection attacks can be detected and stopped through the use of 24X7 network intrusion protection technology.Hosted network security solutions, such as Alert Logic, are able to stop SQL injection attacks that are not stopped by firewalls - they also provide around the clock network surveillance, up-to-date threat detection technology and quick reaction time to any security alerts. About Alert LogicAlert Logic improves internal network security at a fraction of the cost of conventional network security products. Its unique on-demand delivery model combines appliance-based threat management technology with dedicated security experts who monitor networks for threats 24x7 - delivering better security for minimal effort and cost. As a result, Alert Logic customers can detect threats, protect assets, and correct exposures before they impact their businesses. Headquartered in Houston, Texas, more information about Alert Logic's Network Protection On Demand is available at www.alertlogic.com. Contact:
Sarah Gonzales |
Learn More
Corporate Brochure
Featured Event
Simple & Affordable PCI Compliance
Featured White PaperLog Management Made Easy Read the white paper |
| Home | Products | Services | News & Events | Partners | About Us | Blog | Client Login | Terms of Use | Privacy Policy |
|
|
