New SQL Attack Compromises over 50,000 Sites

ScanSafe warned yesterday that over 50,000 legitimate sites have been hit by a new SQL injection attack. The attack inserts a malicious iframe on the sites. Users that visit the sites will get a "drive by download" of what ScanSafe is calling

"a potent Trojan cocktail consisting of backdoors, password stealers and a downloader."

Smaller businesses seem to be targeted as they don't have the aggressive support staff of enterprises.

This latest attack is a good reminder of why it's important to have a proxy that blocks embedded URLs so you can safely go to sites that have been hit by attacks like these. Just make sure your proxy is up to date with its URL database and malware scanning software.