SQL
Programming language for management and use of relational databases
Follow SQL on Notably News to receive short updates to your email — rarely!
We include updates on Java Database Connectivity, Data definition language, Open Database Connectivity, Foreign key, Prepared statement, Snowflake schema, Apache Iceberg, Varchar, Database trigger, Correlated subquery, 1753, Data manipulation language, Query optimization, Call Level Interface, Data control language, Query plan ... and more.
| 2024 |
SQL injection
Security researchers discovered an SQL injection vulnerability in the TSA's FlyCASS system, potentially allowing unauthorized administrative access to airline crew member records.
|
| 2023 |
Embedded SQL
SQL standard SQL:2023 was published, containing Chapter 21 on Embedded SQL, which details its syntax rules and specifications.
|
| 2023 |
SQL reserved words
SQL standards added many new keywords in the SQL:2023 version, including JSON-related keywords such as JSON, JSON_ARRAY, JSON_OBJECT, and several others that were not previously part of the standard.
|
| June 2023 |
SQL:2023
SQL:2023 (ISO/IEC 9075:2023) was formally adopted as the ninth edition of the SQL database query language standard, updating the previous version of the international standard for database languages.
|
| May 2023 |
SQL injection
A widespread SQL injection attack by the Russian-speaking cybercrime group Clop targeted MOVEit file-transfer service, compromising organizations like Zellis, British Airways, BBC, and Boots.
|
| 2021 |
SQL injection
70 gigabytes of data was exfiltrated from the far-right website Gab through an SQL injection attack, with a vulnerability introduced by CTO Fosco Marotto.
|
| 2021 |
SQL injection
Injection vulnerabilities detected in 94% of analyzed applications, with incidence rates up to 19%. OWASP expanded injection vulnerability definitions to include attacks on ORM, EL, and OGNL systems.
|
| December 2021 | SQream acquired no-code data platform Panoply for an undisclosed sum to grow its cloud computing offering. |
| 2019 | ISO/IEC 9075-15:2019 standard released, introducing multidimensional arrays (MDarray type and operators) to SQL |
| February 2018 | SQream Technologies partnered with Alibaba Group's division Alibaba Cloud to deliver a GPU database service. |
| 2017 |
SQL injection
OWASP grouped SQL injection under the broader 'Injection' category, ranking it as the third most critical security threat.
|
| October 2015 |
SQL injection
An SQL injection attack was used to steal personal details of 156,959 customers from British telecommunications company TalkTalk.
|
| June 2015 | Received a US$7.4M venture capital investment. |
| 2014 | SQream was first released after a partnership with Orange S.A. in Silicon Valley. The firm claimed Orange S.A. saved $6 million by using SQream. |
| August 2014 |
SQL injection
Hold Security discovered a theft of confidential information from nearly 420,000 websites through SQL injections.
|
| 2013 |
SQL injection
SQL injection listed as the most critical web application vulnerability in the OWASP Top 10.
|
| November 4 2013 |
SQL injection
Hacktivist group 'RaptorSwag' allegedly compromised 71 Chinese government databases using an SQL injection attack on the Chinese Chamber of International Commerce.
|
| October 1 2012 |
SQL injection
Hacker group 'Team GhostShell' published personal records from 53 universities worldwide using SQL injection.
|
| July 2012 |
SQL injection
A hacker group stole 450,000 login credentials from Yahoo! Voices using a union-based SQL injection technique.
|
| June 1 2011 |
SQL injection
LulzSec hacktivists used SQL injection to steal coupons, keys, and passwords from Sony's website, accessing personal information of a million users.
|
| April 27 2011 |
SQL injection
An automated SQL injection attack on Broadband Reports website extracted username/password pairs from 8,000 random accounts.
|
| April 11 2011 |
SQL injection
Barracuda Networks was compromised through an SQL injection flaw, with hackers obtaining employee email addresses and usernames.
|
| 2010 |
SQL injection
SQL injection again ranked among the top 10 web application vulnerabilities by OWASP.
|
| 2010 | SQream Technologies Ltd was founded by Ami Gal and Kostya Varakin in Tel Aviv, Israel. |
| November 8 2010 |
SQL injection
Romanian hacker TinKode compromised the British Royal Navy website using SQL injection.
|
| September 19 2010 |
SQL injection
During the Swedish general election, a voter attempted a code injection by hand writing SQL commands on a ballot.
|
| July 2010 |
SQL injection
Security researcher 'Ch Russo' obtained sensitive user information from The Pirate Bay by exploiting an SQL injection vulnerability.
|
| July 24 2010 |
SQL injection
Attackers from Japan and China used SQL injection to steal credit card data from Neo Beat and seven business partners, affecting 12,191 customers.
|
This contents of the box above is based on material from the Wikipedia articles SQL injection, SQL:2023, List of SQL reserved words, SQL, Embedded SQL & SQream DB, which are released under the Creative Commons Attribution-ShareAlike 4.0 International License.