SQL Server has a long list of roles for server, database, and applications that outline things like permissions, data selection and modification, and disk management. Examine how roles play a part ...

Sentrigo discovered a new security hole in SQL Server, but so far Microsoft isn't paying attention. Let me show you why they should Last week Sentrigo brought a security hole in SQL Server to my ...

SQL Server has come a long way in the past 5 years, though the history seems to linger. Let's look at the recent history and see what the story is with database vulnerabilities.

Understand SQL Server Security SQL Server grew out of the UNIX world, and administrators maintained accounts (at that time) in a fashion similar to the "no domain" scenario in Windows.

Despite the plentiful information in Books Online and on the official “SQL Server 2000 Security” document Microsoft offers online, setting up a truly secure SQL Server remains a difficult task ...

Security firm HBGary was devastatingly attacked in 2011 after members of the Anonymous collective discovered SQL injection flaws in a custom-developed content management system.

While the on-premises version of SQL Server 2016 is still making its way to general availability, Microsoft has actually been using the same codebase to power Azure’s SQL database service.

Additionally, Microsoft will subject SQL Server 2005 to the federal government’s Common Criteria certification from the National Security Agency. Common Criteria certification carries a more ...

IBM's X-Force 2009 Trend and Risk report claims to show an 11% fall in discovered vulnerabilities compared to 2008, including a decline in the largest categories, such as SQL injections and ActiveX.

Guest post written by Larry Kovnat Larry Kovnat is senior manager of product security at Xerox. Larry Kovnat In March 2008, an attack known as an SQL injection was used to install spyware on ...

SQL is the gateway drug to enterprise adoption says analysts at recent developer conference. Hadoop Summit, leading big data developer conference, saw the maturation of the Hadoop ecosystem ...