The airport said in an alert that the attacks on the websites—SFOConnect.com and SFOConstruction.com—aimed to steal login information from staff and contractors.
The hacking happened in March, when both websites were pulled offline and given a forced password reset, according to the notice. They’re now back online.