Login credentials for websites linked to nearly 50 government agencies have been found scattered across the Internet, according to a new report from Recorded Future.
Advertisement
The credentials — usually consisting of a government email account linked to a password — showed up on numerous public so-called paste sites, such as Pastebin, according to the findings from the threat intelligence company.
The company said those sites tend to be a dumping ground for passwords acquired through various cyber attacks.
More worrisome, according to the report, is that some of the government agencies did not require two-factor verification, which would make the credentials much more valuable.
Join the conversation as a VIP Member