Just when you thought you’ve seen the end of hacked cinema’s website (refering to Malaysia’s GSC website), another one surfaces at TGV.com.my just about 3 months later. According to SANS Internet Storm center, this type of SQL injection uses SQL commands to attack the “sysobject” and “syscolumn” in the database and particularly a website that uses Active Server Pages(ASP).

Continue reading ‘TGV Malaysia website hacked with SQL injection’