This story, “ Video: How to hack PHP sites with SQL injection,” was originally published at InfoWorld.com. Keep up with the latest tech videos with the InfoTube blog.

A black market hacking tool has the potential to rapidly conduct website scans for SQL injection vulnerabilities at a large scale, all managed from a smartphone through the Telegram messenger.

SQL Injection SQL injection (SQLi) is a technique that allows an attacker to execute SQL statements in an entry field. This technique was used with great success by the Lulzsec hackers.

SQL injection, a technique commonly used to compromise websites, is the second most frequently discussed attack method, being at the center of 19 percent of conversations.

SQL injection has been used by cybercriminals since the late 90s. So it begs the question: why is the oldest hack in the book still causing companies big problems? There are plenty of ways hackers can ...

A SQL injection flaw can allow a hacker to enter commands into a web-based form and get the backend database to respond. The compromise happened around July 2012, wrote Bit9’s CTO Harry Sverdlove.

“Within 42 hours I was able to find 42 bugs with security potential (e.g., denial of service, SQL Injection, …),” RDS Alexander Kornbrust said from Germany via an e-mail conversation.

SQL injection is a powerful technique, but it's also a common one. Hackers have been using the attack for more than a decade, and any security professional would know to protect against it.

Distributed denial of service and SQL injection are the main types of attack discussed on hacking forums, according to new research from security vendor Imperva. Underground discussion forums are ...

A SQL injection flaw can allow a hacker to enter commands into a web-based form and get the backend database to respond. The compromise happened around July 2012, wrote Bit9’s CTO Harry Sverdlove.