At http://www.bbc.co.uk/news/technology-14706810 there is a report on yet another SQL Injection attack. This time it is Nokiia's Developer network.
How many other systems are vulnerable to such attack?
If you run a Dot Net based web application, run FXCOP to check for vulnerabilities.