A CIA-backed startup discovered the login details and passwords access 47 US government agencies to go online, effectively leaving federal agencies open to any attacker, or any curious.
Boston-based Recorded Future is a service miningof data backed by CIA venture capital. The company said it discovered credentials belonging to 47 US government agencies on 89 unique domains online.
The control identity δύο παραγόντων είναι μια choice που προσφέρεται από διάφορες online υπηρεσίες, όπως το Facebook, το Gmail και τη PayPal, για να αυξήσει την ατομική ασφάλεια παρέχοντας ένα δεύτερο στρώμα άμυνας.
As passwords are no longer the safest way to protect an account, connecting a mobile phone to your account can be used to prevent an illegal entry.
However, since the beginning of 2015, 12 from the US services that have been infringed do not use the two-factor authentication security feature.
"The presence of these credentials on the Open Web leaves these services vulnerable to espionage, social engineering attacks, and custom spear-phishing attacks against their workforce," says Recorded Future.
Recorded Future used the Web Intelligence Engine, an "analytics" engine designed to search for "invisible links" between content that refers to "same or related things and events."
The Web Intelligence Engine has scanned over 680.000 Web resources in multiple languages, and by linking the contexts and sources found the credentials belonging to government agencies.
