SQL injections for all United Nations
It has been all over the web that a website of the UN has been hacked, well that is a big word. A function in the sidebar has been injected with words from a hacker because the sql database behind it was not tested enough before going live or being patched.
There are so many sql injections and XSS mistakes on websites nowadays that hackers even don't want to publish them all. It ain't so much fun any more except probably for that big one like the United Nations.
The sad thing about it is that everybody is looking at it, saying wow and that nobody asks 'how does this happen ?' 'who didn't do his job'
Tools and news and tutorials about sql injections can be found in my scribd archive and my furl.net archive.