From: Dark Reading
By Ericka Chickowski
The yin and yang of data security, application security and database security are two halves of a whole, different but still dependent on one another to reach true completion. When they fail together, attack methods such as SQL injection have a far greater impact on an organization. In order to limit the scope of attacks, developers and DBAs both need to acknowledge their role in the process and work together to ensure that web applications aren’t exposing sensitive databases.
This starts by understanding how much the current web app phenomenon has opened up once-closed databases.