MySQL allegedly hacked - via SQL injection
Blind SQL injection means that the result of the database operation is not displayed; in other words, the attacker has to work blindly. In such cases, hackers therefore often ask the database yes/no questions and link one of the answers to a time-consuming operation. Depending on how long it takes the resulting page to appear, they can then tell what the response to the query was.
The link for this article located at H Security is no longer available.