Modernizing Authentication — What It Takes to Transform Secure Access
"Dear FC Barcelona management, Don't let the Qatari money funds you, it's full of blood and kill," the hackers tweeted to FC Barcelona's 1.1 million Twitter followers.
Later, they added cheekily, "Special Hi to @ReadMadrid!"
Less than 20 minutes later, the football club regained control of the account and tweeted, "This Twitter account has been used fraudulently. The improper tweets have been removed. We apologise for any inconvenience."https://o1.qnsr.com/log/p.gif?;n=203;c=204634421;s=15939;x=7936;f=201702151714490;u=j;z=TIMESTAMP;a=20304455;e=i
"There seems little doubt to me that FC Barcelona could have avoided this hack if they had followed best practices -- which would have included training staff to never re-use passwords and to be suspicious of unsolicited emails, checked that they were only entering their passwords on legitimate websites, and -- crucially -- enabled two factor authentication on their account," Cluley noted.
Photo courtesy of Shutterstock.