Passwords are there for a reason...
By Pia Heikkila
Published: 21 May 2002 17:00 GMT
Microsoft's SQL server is wide open to a hack attack if the password is left on its default setting.
Researchers at security company Trend Micro have discovered a "huge number" of connection attempts on port 1433 (MSSQL Port).
According to the company, the connection attempts look like a hack attack. At first, an MSSQL handshake is transferred, which is not unusual. But afterwards, a second packet is sent, and this packet is an attempt to log-in to the SQL server, using the account name "sa" and an empty password.
This is the default authentication set-up for SQL installation.
Trend Micro said in a statement: "Some of our key accounts have confirmed our observation, which led us to publish this security advisory. Some firewall logs at customer sites even show that some of the attacks started 20 May. We have not determined the source of these malicious attacks."
Trend Micro has advised companies to check their firewall configuration to prevent the attack and ensure all the SQL servers have a proper password in place.
Microsoft has also published an advisory, which can be found at:
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/
The role involves writing embedded C in to micro controllers. Have experience writing code into micro controllers. My client an award winning ...
Technical Sales Specialist- London - Molecular and Micro Analysis An exciting opportunity has developed in a growing Scientific Sales Organisation in ...
Other responsibilities include: Implementing preventative measures; minimising business disruption; minimising risk of security attack, malicious ...
Agenda Setters 2009
Welcome to the ninth annual Agenda Setters poll – silicon.com's list of the top 50 most influential individuals in the technology and IT industries, from techies and CIOs to entrepreneurs and business leaders. Find out more in our latest special report.
Is Your Enterprise Architected for Tomorrow's Growth?
Improving IT service delivery through an integrated approach to software asset management...
TechRepublic Resource Guide: Software as a Service (SaaS) for Small and Midsize Businesses...
Download a Free Trial of SmartDraw: Learn why SmartDraw is the ideal alternative...
Stories from the web...
Copyright © 2008 CBS Interactive Limited. All rights reserved. Top of page
Digg
Slashdot
Del.icio.us
Stumble
Reddit
RSS Feeds
Clive Longbottom Windows 7: Not perfect - but ready for prime time Microsoft's latest OS fixes most of Vista's ills - but still has challenges ahead
Stephen Kleynhans Mind the details with Windows 7 Just because it might work better than Vista, it doesn't mean you can be sloppy