IT/Web: May 2012 Archives

Iranian 'Cyber Warriors Team' takes credit for NASA hack, MSNBC

"A group of Iranian student hackers known as the Cyber Warriors Team claims to have stolen the personal information of thousands of NASA researchers. The Cyber Warriors Team boasted in a May 16 Pastebin post that it exploited a secure sockets layer (or SSL) vulnerability in the space agency's website to swipe "information for thousands of NASA researcher[s] with emails and accounts of other users." In the hackers' poorly worded English message, "How and reasons to Hack NASA SSL Certificate," the group said the security glitch still exists, and leaves the agency open to more malicious attacks."

NASA denies Iranian cyberattack, CSO Data Protection

"NASA said it discovered the Pastebin post within hours and launched an investigation of the claims. "Although the investigation is ongoing, all results thus far indicate that the claims are false... At no point were any sensitive, mission, or classified systems compromised," Beth Dickey, a NASA spokeswoman, said in an email."

NASA's Inconsistent Support of the International Space Apps Challenge

"Several weeks ago NASA and a number of sponsors held the International Space Apps Challenge. The intent was to enlist people from all across the world to create solutions to problems and issues associated with spaceflight. The participants were truly spread out across our planet including Antarctica with support from the crew aboard the International Space Station. ... I think it is inexcusable that NASA has not made more of an effort to promote things such as the International Space Apps Challenge - especially when the White House places such a priority on things like this. There is much risk in this ad hoc and dysfunctional public engagement policy at NASA. Now that the first apps challenge event was such a success, efforts like this could continue - without overt NASA involvement - thus making NASA less - rather than more relevant."

NASA Hacked Again

NASA, ESA confirm hacks; The Unknowns says systems patched, ZDNet

"For the NASA hack, the group also decided to leak one of the research center's databases. They released names, employers, home addresses, and e-mail addresses of 736 victims on Pastebin. ESA is the other organization for which they also leaked more data, also via Pastebin. Both NASA and ESA have now confirmed the attacks. NASA security officials detected an intrusion into the site on April 20 and took it offline," a NASA spokesperson said in a statement. "The agency takes the issue of IT security very seriously and at no point was sensitive or controlled information compromised. NASA has made significant progress to better protect the agency's IT systems and is in the process of mitigating any remaining vulnerabilities that could allow intrusions in the future."



Monthly Archives

About this Archive

This page is an archive of entries in the IT/Web category from May 2012.

IT/Web: April 2012 is the previous archive.

IT/Web: June 2012 is the next archive.

Find recent content on the main index or look in the archives to find all content.