Over the weekend Imperva issued a warning to RockYou (a maker of social network applications) that there was a serious SQL Injection flaw in their database. The attack could grant attackers every user name and password within their database. Imperva notified RockYou - who has said the flaw has now been fixed. However, there have been claims that a hacker stole an alarming 32 million accounts already which contained - wait for it - clear text passwords.
Clear Text Passwords - not just for telnet and FTP anymore.
Authors & Topics: