 |
|||||
 |
 |
 |
|
Home > Press Releases > August 29, 2006 |
|
|
Medium-Size Financial Services Firms Targeted by SQL Injection AttacksOn-Demand IT Security Company Alert Logic Finds SQL Injection Attacks Account for Up to 90 Percent of Monthly Threats to SMB Financial Firms HOUSTON - AUGUST 29, 2006 - Alert Logic, the only IT network security company leveraging a Software-as-a-Service (SaaS) platform to deliver on-demand protection to mid-sized businesses,reports that SQL injection attacks comprise the overwhelming majority ofattacks on medium-size financial firms it provides network protection for. While SQL injection attacks typically make up 20 percent of attacks aimed at other SMB markets, Alert Logic has found that SQL injection attacks account for 90 percent of attacks logged against its financial clients over the past quarter. SQL injection attacks leverage software vulnerabilities to insert malicious code into databases - they cannot be stopped by firewalls because they appear to be legitimate network traffic. If the breach is successful, hackers are potentially able to read files stored in sensitive databases. For financial services companies, breaches in database security are among the most damaging attacks faced due to the sensitive nature of data stored in financial firm databases. The overwhelming number of SQL injection attacks aimed at financial services firms, discovered through Alert Logic's 24X7 network surveillance service, is further evidence of the specific targeting of SMBs by hackers and criminal organizations. In the past, most email-borne IT threats were designed to hit as many companies as possible, regardless of their size or business niche. Criminal organizations have changed those tactics to specifically target SMBs, who often depend solely on firewalls for network protection and as a result are not sufficiently protected from well-designed attacks tailored for individual business sectors, such as financial services. Chris Smith, vice president of marketing for Alert Logic, commented: "Any lingering thoughts that SMBs had regarding their ability to be under the radar for these criminal hacking groups should be gone. SQL injection attacks are the best way to get to database information and for financial services firms, database information is the most sensitive. Any medium-size financial services company depending on firewall and antivirus protection alone is not sufficiently protected and has probably already been breached." SQL injection attacks can be detected and stopped through the use of 24X7 network intrusion protection technology. Hosted network security solutions, such as Alert Logic, are able to stop SQL injection attacks that are not stopped by firewalls - they also provide around the clock network surveillance, up-to-date threat detection technology and quick reaction time to any security alerts. About Alert LogicAlert Logic is a leading provider of cloud-based IT compliance and security solutions. By enabling its customers to detect threats, eliminate vulnerabilities, and manage log data, Alert Logic provides the easiest way to secure networks and comply with policies and regulations. Alert Logic's cloud-based platform utilizes Software-as-a-Service to deliver the benefits of rapid deployment, zero maintenance, and no upfront capital costs. As a result, Alert Logic customers benefit from easy and affordable compliance and security. Based in Houston, Texas and founded in 2002, more information about Alert Logic can be found at http://www.alertlogic.com. Alert Logic Contact:
Patrick Kimball |
||||||||||||||||||||||||||||||||
 |
| Home | Products | Services | News & Events | Partners | About Us | Blog | Client Login | Terms of Use | Privacy Policy |
|
|
