The root of MySQL's security evil?

Thursday, 10 February 2005, 12:03 PM EST

The recent worm attack that hit thousands of MySQL installations reflects a growing trend in the malware world. This worm doesn't exploit a weakness in the MySQL code--it exploits lazy admins who could protect themselves with one simple step.

The MySQL worm, like many others, uses a brute-force attack to guess a target's root password. Far too often, it only needs one guess: the default password, which the admin never changed.

By Matt McKenzie at Linux Pipeline.

[ Read more ]




Spotlight

Cloned, booby-trapped Dark Web sites steal bitcoins, login credentials

Apart from being a way for dissidents and journalists to do their business without being spotted and identified by "the powers that be", the Dark Web is also a place where criminals sell and buy illegal wares and services and, apparently, where they also get robbed by scammers.


Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.
  



Daily digest

Receive a daily digest of the latest security news.
  
DON'T
MISS

Fri, Jul 3rd
    COPYRIGHT 1998-2015 BY HELP NET SECURITY.   // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //