This lab demonstrated the inherent security risks of FTP, including plaintext credential transmission and susceptibility to MITM attacks. We exploited these weaknesses by intercepting credentials and modifying files in transit. To mitigate these vulnerabilities, we implemented SFTP, which ensures encrypted communication and secure file transfers.
Through this comparison, it is clear that FTP should not be used for sensitive data, as it lacks encryption and authentication safeguards. SFTP, with its robust encryption and security mechanisms, is the preferred choice for secure file transfers. Organizations should adopt SFTP to protect their data from interception and unauthorized modifications.