Online attacks against databases have taken off in the past 18 months,
according to data released by IBM’s X-Force security team.
In May 2008, IBM’s customers encounters about 2,500 SQL injection attacks
every day. By midsummer 2009, the technology giant’s product were seeing 600,000
database attacks per day on average, said Tom Cross, a security researcher at
IBM. The attacks attempt to inject legitimate structured query language (SQL)
commands into whichever database software runs a particular Web site.