Developers have to clean up their code before putting things in production lest they leave back doors open into the database. Developers should be especially careful of falling prey to hubris about their L33t skills in cryptology. Developers shouldn’t cut corners in testing to ensure that a cut-and-paste isn’t introducing vulnerable code to the application. Too many tools generate REST interfaces directly from the database, security expert says. Back backup databases may be as damaging in the wrong hands as the live data.”]
Source: https://www.darkreading.com/database-security/10-ways-developers-put-databases-at-risk