The City Sights NY breach led hackers to cardholder information for 110,000 credit cards. The online breach was facilitated via SQL injection, one of the most frequent modes of attack hackers use. Analyst: “We should know better by now, but we don’t” Web application firewall, or WAF, is the best option for preventing an SQL-related breach, expert says. Expert: “What we have here is nothing more than sloppy security. It comes from the all-too common mentality among merchants that breaches only happen to other people””]
Source: https://www.cuinfosecurity.com/sql-injection-blamed-for-new-breach-a-3195