Basic Authentication Over HTTP
HTTP traffic can often be sniffed and captured by an attacker who has access to a network interface. In HTTP basic authentication, user credentials are sent in Base64 encoding which, can easily be decoded into plain text.
Enforce using HTTPS.
Last updated on February 15, 2021