It's a great show but, also a fiction.<p>One would not necessarily expect that it was the actual Mr. Robot who created the website for the show. In fact I'd expect it to be a relatively junior agency.<p>Which would mean they've got QA & security process to match.<p>I'd also suspect that as an overwhelmingly awesome show that glorifies hackers, they're probably a relatively "safe" target.<p>I mean, we're talking the game of thrones of computer nerd shows here...
I'm always worried about where is the line with this kind of pentests. I assume that it wasn't ordered by the site owner and even though the author clearly did the webmaster a favor... couldn't he get in a trouble by sqlmapping random sites?
The mother of all web vulns - yet I don't recall of much SQL injections in the show, this may land in season 2 ;)
Anyway, if you want a reliable SQL injection protection, I suggest you try Sqreen (<a href="https://sqreen.io" rel="nofollow">https://sqreen.io</a>) - PHP support is coming soon!