juniorDBA13 - Wednesday, January 3, 2018 6:04 AM
I should point out that the hacking attack that took Sony down a few years ago started with SQL injection and ended with a complete compromise of their entire network.
The Equifax data breach - SQL injection
etc, etc, etc, http://codecurmudgeon.com/wp/sql-injection-hall-of-shame/
Maybe ask the company's risk officers whether it's worth the time not to join that list.
Gail Shaw
Microsoft Certified Master: SQL Server, MVP, M.Sc (Comp Sci)
SQL In The Wild: Discussions on DB performance with occasional diversions into recoverability