It was discovered that the intrusion used a SQL injection vulnerability that had existed in PostgreSQL for more than nine years but had gone unnoticed, as software engineer Nick Agliano wrote in ...