Security expert says don't blame Microsoft for mass Web site defacements

Now that the bad guys have found a generic way to attack SQL-based Web sites, look for more attacks in the near future.