Info-stealer code is used by hackers to hack 2 San Francisco airport websites

Two airport websites of San Francisco are being hacked by attackers.

“SFOConnect.com” and “SFOConstruction.com” were the targeted sites being attacked by the hackers. The details of the attack and data compromised has not yet been disclosed by the officials. Reports have suggested that the hacking happened based of the credentials used by the employees to access their accounts.

The researchers have found that some of the parts of the stolen data is present in the dark web. One of the compromised site is still offline and the workers are working from their homes using VPN tools to access SFO services. The affected users have been informed by the officials.

The reports from researchers have disclosed that around 8000 such data records were uploaded on dark web in late February 2020. The hackers somehow managed to insert data-stealing code into the sites to compromise credentials used by the airport employees to access email and network accounts.

NPAV recommends users to take such security and data breaches seriously as hackers always find new ways to maliciously sneak in to cyber environments. Stealing of private and sensitive data of such big firms and letting it freely available on the dark web can cause a huge damage to such firms. Keeping the cyber security measures up and updated should be a task of high priority.

Use NPAV and join us on a mission to secure the cyber world.