Over the past few days, Network Box has been monitoring an increase in targetted SQL Injection website attack activity. Currently, this only appears to be affecting certain versions of the Microsoft IIS web server, coupled with Active Server Pages (ASP) scripting and Microsoft SQL Server. The attacker attempts to modify sql database records for websites.

Over the past few days, Network Box has been monitoring an increase in highly-targetted SQL Injection website attack activity. Currently, this only appears to be affecting certain versions of the Microsoft IIS web server, coupled with Active Server Pages (ASP) scripting and Microsoft SQL Server. The attacker attempts to modify sql database records for websites.

Companies can consolidate their network security through one solution and greatly reduce the strain on operating resources, thanks to the new E-Series product range launched today by managed security company, Network Box. The E-Series range includes solutions for medium (E1000) to large companies (E2000 and E4000) to allow the Network Box service to grow with their customers.

On a hot summer's day two years ago, members of the Washington police force arrived at a building in Arlington County to arrest a suspected paedophile. The detectives were met by an elderly woman who, it emerged, had nothing to do with the crime. The problem was her wireless router. The device was openly allowing access to the internet throughout her apartment building and it is suspected that one of her neighbours was using it to upload child pornography.

A vulnerability has been reported in the Debian Linux use of the OpenSSL library. This vulnerability can lead to generation of insecure security keys that can be brute-force attacked. The problem affects the Debian version of the Linux operating system, as well as Debian-derived variants (such as Ubuntu).

Network Box Security Response has analysed the vulnerability, as well as our own version of the openssl library, and can confirm the following: