Security researchers began seeing signs of a new piece of malware that was somewhat baffling to them. The malware, called Gumblar, was about the business of stealing Web site credentials and compromising as many legitimate sites as possible. It has highlighted the horrific state of Web application security and become the new model for Web-based malware. Experts say the problem of mass Web site compromises is likely to get much, much worse before it gets better, thanks to factors that have combined to make owning the Web a simple, straightforward exercise.
Source: https://threatpost.com/how-mass-sql-injection-attacks-became-epidemic-072110/74241/

