MS08-067 RPC Vulnerability

Last night I got the word that our director wanted MS08-067 patched ASAP, so I went into work to patch our servers and develop a script to deploy it to the workstations. We don’t utilize tools such as SCM, and our WSUS deployment isn’t ready for use, so we needed […]

SQL Injection Hit

Blast! Today I was rudely interrupted by a SQL injection attack on our main public facing web server. When I arrived this morning at 7:30, I promptly overheard the help desk folks alerting us to the fact that when we visited our website (which happened to be the default home […]