Tag: SQL Server security

If you’re after a toolkit to own Microsoft SQL Server from end to end, what you need is PowerUpSQL. Implemented in PowerShell and as complete as they come, PowerUpSQL has tools to discover, compromise and own just about any SQL system. It’s the whole kill chain in one tool. This...

Database roles are similar to Windows groups — rather than revoking or granting access to each user separately, administrators manage access by granting or revoking permissions from roles and  by changing role membership. Using roles makes it easier to accurately grant and revoke privileges...

For anyone managing a SQL Server database, understanding permissions is critical to ensuring that only authorized users are able to view and modify data. This article explains the different types of SQL Server permissions, including server-level and database-level user permissions, and provides...

Your organization's SQL Server is a critical asset, providing storage for your valuable data and serving as the back-end database for many enterprise applications and websites. This article explains what's involved in ensuring high performance and explores four of the top SQL Server performance...

SQL Server includes a range of security features. Two of the most valuable are column level security and row level security, which enable you to granularly grant users access to rows and columns in a table. This article explains how to implement these features in your environment. Securables,...

Data protection is critical for ensuring that your organization is compliant with regulatory compliance standards like the GDPR and for meeting the expectations of your clients and business partners. Not only can data breaches result in large fines, but the reputational damage can be just as great....

Data breaches often stem from poorly secured database servers. Being a popular enterprise solution, MS SQL Server databases often become a prime target for attackers. They frequently target these databases and exploit common vulnerabilities such as SQL injection, misconfigured permissions, and weak...

Auditing Microsoft SQL Server is critical to identifying security issues and breaches. In addition, auditing SQL Server is a requirement for compliance with regulations like PCI DSS and HIPAA. The first step is to define what to audit. For example, you might audit user logins, server...

This month’s poll results revealed some very interesting details on what administrators are looking for to support their SQL server environments. Of those polled, 33.6% stated they want SQL configuration settings audited. 22.9% expressed the need for security auditing such as logins and role...