I'm really shaken up because my Webflow site got hacked. We didn't have two-factor authentication set up, which is a major oversight. The password for our site was randomly generated and stored in both LastPass and Google Password Manager. The hacker managed to paste malicious redirects into our headers and footers. Has anyone heard from Webflow about this? I know LastPass had a security breach, but they claimed the stolen data was encrypted. I'm starting to wonder if Webflow might be the weak link here. I suppose it's possible that someone intercepted the password while I was on public Wi-Fi with weak TLS, but I honestly can't imagine that's how it happened.
2 Answers
You might want to consider the possibility that the person whose Google account got hacked reused a password from another site. If they did, that could have opened the door for the attacker, especially if the same password was used for Webflow.
It's possible that an infostealer malware ran on one of your devices, picked up your cookies and saved passwords, and sent them to the hacker. You should check your logs right away to see if anything looks suspicious!
Interesting thought! I really wonder if someone fell for a phishing attack.
Yikes! Definitely something to investigate quickly!
But it looks like they didn't change the Webflow password at all, right? So they had access for sure.