logo
logo

‘Rasputin’ responsible for hacking into university, government database servers

avatar
Keith Maldonado
Feb 15, 2017 13:55
img

Your data is vulnerable to relatively easy cyberattacks, and incentives are needed to compel organizations to secure their database servers.

Studies have shown that millions of internet-connected machines are vulnerable to cyberattack based on a variety of configuration and other issues.

One vulnerability that cybercriminals can use to relatively easily attack systems is called SQL injection, meaning that a database server that doesn t carefully check the data submitted on web forms, for example, can be compromised.

One SQL injection, or SQLi, threat is known as Rasputin, referring to a Russian-speaking cybercriminal who has been linked to a number of attacks against various government and private agencies.

A recent attack by Rasputin targeted over 60 government and educational institutions, and the solution to such attacks is to change the penalties and incentives related to resolving SQLi issues, according to a recent Recorded Future analysis.

The company worked with law enforcement in December 2016 to assess the database attack on the United States Election Assistance Commission EAC and the eventual sale of information.

collect
0
avatar
Keith Maldonado
Feb 15, 2017 13:55
guide
Zupyak is a free content platform for publishing and discovering stories, software and startups.