Two sites from the biggest airport
The San Francisco International Airport is the largest one from the Bay Area and a major gateway for European Asian nations. It serves travels to over 50 international cities with 45 different carriers, and has about 86 nonstop connections. The airport, on April 7, 2020, disclosed an internal hack performed on two of its sites – SFOConnect and SFOConstruction. While the former ones used for travel information and helpline, the latter site specified to airport’s construction projects. These may not seem that important, yet hackers breached into them and planted a malicious code, which scraped the login details of those who’ve entered in them. This was informed to all the staff and even pasted on SFOConstruction page. The airport said the breach happened in March this year, and now the malicious code was removed from both sites. The SFOConnect is now up and running, but the SFOConstruction is semi-finished.
Change the passwords immediately
Besides taking both the sites offline after realizing the cyberattack, the airport has also force reset its SFO related email and network passwords on March 23rd itself. After all, it advised everyone, those who’ve used the sites and potentially be affected, to change their passwords immediately. Further, change passwords to other websites that are of the same combination for cross-site hacks. SFO airport hasn’t mentioned anything about who the perpetrators could be and how that malicious code looked like. Source: SFO Notice