Site being hacked?
Posted on 2006-07-10
This is the second time (two different IP's) I've seen this in the past 3 weeks. Someone from China looks to be trying to use a SQL Injection technique to hack one of my sites. What is interesting is that both times, they tried the exact same order of manipulation to the querystring, so I'm wondering if this is a program or something they are running. Has anyone seen this?
News.aspx?ArticleID=1' and char(124)+user+char(124)=0 and ''='
News.aspx?ArticleID=1 and char(124)+user+char(124)=0
News.aspx?ArticleID=1' and char(124)+user+char(124)=0 and '%'='
News.aspx?ArticleID=1 and 1=1
News.aspx?ArticleID=1 and 1=2
News.aspx?ArticleID=1' and 1=1 and ''='
Both times it has been in the exact same order... When I look at this technique, even if my site was suspect to sql injection, this stuff wouldn't even do anything.
I put a few of this stuff into google, and it returned a site that has a few of these "techniques" listed on website, so I wonder if they are standard techniques. Has anyone seen something like this before. Should I be worried?