McAfee was targeted by a cyber attack in April 2017.
The actual target of the hack on the McAfee website was the company's LinkedIn profile, which has over 135,000 followers.
One of the administrators of McAfee's LinkedIn page did two things that were very wrong:
-
The practice of using the same password for several online accounts.
-
Refusing to enable two-factor authentication.
Source: https://grahamcluley.com/lessons-learn-mcafees-linkedin-page-hijacked/
TPRM report: https://scoringcyber.rankiteo.com/company/mcafee
"id": "mca22714822",
"linkid": "mcafee",
"type": "Cyber Attack",
"date": "04/2017",
"severity": "60",
"impact": "1",
"explanation": "Attack without any consequences"{'affected_entities': [{'industry': 'Cybersecurity',
'name': 'McAfee',
'type': 'Company'}],
'attack_vector': 'Credential Stuffing',
'date_detected': 'April 2017',
'description': 'McAfee was targeted by a cyber attack in April 2017. The '
'actual target of the hack on the McAfee website was the '
"company's LinkedIn profile, which has over 135,000 followers. "
"One of the administrators of McAfee's LinkedIn page did two "
'things that were very wrong: 1. The practice of using the '
'same password for several online accounts. 2. Refusing to '
'enable two-factor authentication.',
'impact': {'systems_affected': "McAfee's LinkedIn Profile"},
'recommendations': ['Use unique passwords for different accounts',
'Enable two-factor authentication'],
'title': 'McAfee LinkedIn Profile Cyber Attack',
'type': 'Cyber Attack',
'vulnerability_exploited': ['Same password for multiple accounts',
'Lack of two-factor authentication']}