Reply to post: Re: Hmmmm

Sophos XG firewalls hacked, hotfix ready. Texts wreck Apple iThings. Yup, business as usual in infosec world

Anonymous Coward
Anonymous Coward

Re: Hmmmm

Reading between the lines, I suspect this wasn't an injection attack of the obvious kind where the application carelessly concatenates untested input. I.e. not "little bobby tables". The article is a little fluffy on the subject but it takes note of a previously unknown "pre-auth" attack. I have no insider knowledge, but I think it was internal SQL engine vulnerability and not careless app-level coding. Well, it's possible either way.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Biting the hand that feeds IT © 1998–2021