I've read about a piece of malware that primarily targets corporate users in order to modify and delete records on corporate SQL databases. Does this malware pose any risks beyond the cost incurred from having to restore systems? Are there specific defenses that can be used to protect databases?