Sources
Loading...
Additional media
Loading...
DeepNewz, mobile.
People-sourced. AI-powered. Unbiased News.
The Cybersecurity and Infrastructure Security Agency (CISA), in collaboration with the FBI, has issued a Secure By Design Alert targeting SQL injection (SQLi) vulnerabilities in software products. This alert calls on technology manufacturers to initiate immediate actions to mitigate these vulnerabilities, which have been known for over TWO decades yet continue to persist in commercial software, putting users at risk. The guidance emphasizes the need for a formal review of code by manufacturers to identify and eliminate SQLi vulnerabilities, highlighting the ongoing issue of software products being developed with this significant defect.
CISA Seeks to Curtail 'Unforgivable' SQL Injection Defects: https://t.co/NPoUudRp2D by darkreading #infosec #cybersecurity #technology #news
SQL injection vulnerabilities are still a persistent defect in commercial software products. New #SecureByDesign guidance from the #FBI and @CISAgov urges technology manufacturers to mount a formal review of their code to identify any SQLi vulnerabilities: https://t.co/fVdyQtADB6 https://t.co/2nvggOEAbP
🚨Despite widespread knowledge of #SQLi vulnerabilities over TWO decades, software manufacturers continue to develop products w/this defect, putting customers at risk. This #SecurebyDesign Alert urges manufacturers to eliminate this class of vulnerability: https://t.co/no5AqzTWQR https://t.co/XYnYqrFER0
