Can 2FA prevent breaches? Lessons learned from the SFO airport watering hole attack

CERT-LatestNews SocialEngineering ThreatsCybercrime ThreatsEconomic ThreatsStrategic Uncategorized

Introduction. Start your free trial In March 2020, two websites serving customers of San Francisco International Airport were hacked. The websites used first-factor authentication only and the cybercriminals had inserted code that allowed usernames and passwords to be stolen. Passwords are flimsy.