SQL Injection Attack Is Top Database Security Concern Among SMBs, Survey Finds

New Products, Agreements and Trends
Typography
  • Smaller Small Medium Big Bigger
  • Default Helvetica Segoe Georgia Times

GreenSQL, a database security unified solution provider, recently surveyed more than 6,000 GreenSQL SMB users–IT administrators, DBAs, data security professionals, and consultants–about their most critical database security concerns.

Respondents’ primary concerns were the following:

  • 51 percent—SQL injection attacks from internal and external users
  • 31 percent—internal threats, including unauthorized database access, database administrator errors, and data exposure to non-privileged internal users
  • 18 percent—regulatory compliance

"In today’s environment, it isn’t a matter of whether you will be hacked, but when," says Amir Sadeh, CEO of GreenSQL. "Cybercriminals recognize that not only enterprises but also SMBs are especially vulnerable," he says. "Databases contain the crown jewels of an organization, which means a break-in by insiders or outsiders can cost millions in fines, lawsuits, and customer attrition.

"Many companies think they can't afford complete data security protection," he continued, "but GreenSQL offers four different packages to accommodate any budget. More than 100,000 SMBs in over 190 countries have chosen GreenSQL database security technology to protect their data from the entire threat spectrum because it is simple to install, easy to use and maintain–and effective."

Cybercriminals use SQL injection to target both external Web sites and internal databases when seeking data for identity theft and other profitable black market activities. Public Web sites serving as the face of an organization are known to be vulnerable to SQL injection attacks but so are internal collaborative sites as shown by the recent assault on the internal Nokia developer application.

Internal data security leaks, a concern of 31 percent of GreenSQL users surveyed, let corporate data get into the wrong hands. While developers, administrators, and customer service representatives all need data access, they should have different access privileges. In addition, true data protection covers threats from both employee theft and error. Coordinating database access control and command permissions can significantly reduce data loss from errors while lowering the cost to repair any that remain.

Compliance ranks third in the survey as a top security concern. Lack of compliance with Sarbanes Oxley, PCI DSS, HIPPA, or other regulations can result in significant legal fees, negatively impinge on a company's ability to do business, and reduce client and customer trust. For more information or a free download of GreenSQL, visit http://www.greensql.com.


GreenSQL provides the world's businesses with a comprehensive set of unified database security solutions for the SMB/SME and enterprise markets. With an all-in-one approach to database security, the GreenSQL product family offers database protection, monitoring, and performance in a single integrated suite. GreenSQL was founded in 2009 to deliver total database security solutions that are easy to deploy and use. It offers one of the world’s most popular database security solutions, with over 110,000 copies downloaded in 192 countries.

BLOG COMMENTS POWERED BY DISQUS

LATEST COMMENTS

Support MC Press Online

$

Book Reviews

Resource Center

  •  

  • LANSA Business users want new applications now. Market and regulatory pressures require faster application updates and delivery into production. Your IBM i developers may be approaching retirement, and you see no sure way to fill their positions with experienced developers. In addition, you may be caught between maintaining your existing applications and the uncertainty of moving to something new.

  • The MC Resource Centers bring you the widest selection of white papers, trial software, and on-demand webcasts for you to choose from. >> Review the list of White Papers, Trial Software or On-Demand Webcast at the MC Press Resource Center. >> Add the items to yru Cart and complet he checkout process and submit

  • SB Profound WC 5536Join us for this hour-long webcast that will explore:

  • Fortra IT managers hoping to find new IBM i talent are discovering that the pool of experienced RPG programmers and operators or administrators with intimate knowledge of the operating system and the applications that run on it is small. This begs the question: How will you manage the platform that supports such a big part of your business? This guide offers strategies and software suggestions to help you plan IT staffing and resources and smooth the transition after your AS/400 talent retires. Read on to learn: