Redmond Magazine

MySQL Databases Subject to Password Verification Flaw

It could give remote attackers access the contents of the databases by bypassing the password authentication process in unpatched systems. "When a user connects to MariaDB/MySQL, a token (SHA over a ...
Threat Post

Trivial Password Flaw Leaves MySQL Databases Exposed

There is a trivially exploitable vulnerability in MySQL that enables an attacker to gain root access to the database server. The bug, which recently was patched ...
Redmond Magazine

MySQL Databases Let Loose User Passwords

In this edition's "Password Breach of the Week" story, news recently surfaced that an attacker could gain access to MySQL databases thanks to a flaw that will verify an incorrect password as correct.
Computerworld

MySQL vulnerability allows attackers to bypass password verification

Security researchers have released details about a vulnerability in the MySQL server that could allow potential attackers to access MySQL databases without inputting proper authentication credentials.
Bleeping Computer

Database Ransom Attacks Have Now Hit MySQL Servers

After the ransacking of MongoDB, ElasticSearch, Hadoop, CouchDB, and Cassandra servers, attackers are now hijacking hundreds of MySQL databases, deleting their content, and leaving a ransom note ...
Ars Technica

Resetting MySQL root password

mysql Ver 14.12 Distrib 5.0.77, for redhat-linux-gnu (i686) using readline 5.1 I need to work on MySQL about once every six months, so it's always an exciting re-learning experience [root@server ~]# ...
Bleeping Computer

Anchor CMS Sites May Be Spewing Their Database Passwords

Anchor CMS logs database credentials in cleartext But there is also an issue with Anchor CMS, which should not dump cleartext database passwords in the errors log, to begin with. " This is the file ...