Microsoft SQL password-guessing attacks rising as hackers pivot from OneNote vectors


Better controls should be implemented by database administrators, as assaults resulting in ransomware have been noted.As hackers reportedly move away from prohibited methods, malware attacks employing Microsoft SQL (MSSQL) Server as an infiltration vector have increased significantly during the past six months.

Attacks using this vector have increased since Microsoft made the historic decision to by default disable Virtual Basic for Applications (VBA) macros in Office documents last year. Before Microsoft eventually made the adjustments, cyber security experts had been requesting tougher default settings for VBA macros for years.

Read More…