San Francisco International Airport has confirmed two of its websites were hacked in March as part of an effort to steal staff and contractors’ usernames and passwords.
The airport confirmed
in a notice dated April 7 that the two websites,
SFOConnect.com and
SFOConstruction.com, were “the targets of a cyberattack,” in which the hackers “inserted malicious computer code on these websites to steal some users’ login credentials.” If stolen, these login credentials could have an attacker access to the airport’s network. It’s not known if there were any additional protections in place, such as multi-factor authentication, to prevent a network breach.
The notice added that: “Users possibly impacted by this attack include those accessing these websites from outside the airport network through Internet Explorer on a Windows-based personal device or a device not maintained by [the airport].”