This is a very interesting story. Apparently attackers are automating SQL injections on vulnerable sites/apps with SQL Server backends. I’ve always been a big fan of automated SQL injection tools such as what HP’s WebInspect has built-in but this brings a whole new meaning to automated SQL injection!
Yet another reason you need to be testing your Web applications for security vulnerabilities consistently and without fail.