Security News > 2021 > February > NASA and the FAA were also breached by the SolarWinds hackers

NASA and the FAA were also breached by the SolarWinds hackers
2021-02-24 13:32

NASA and the US Federal Aviation Administration have also been compromised by the nation-state hackers behind the SolarWinds supply-chain attack, according to a Washington Post report.

NASA is an independent U.S. federal agency coordinating its civilian space program.

While the US government has not publicly disclosed that NASA and the FAA were breached, the agencies' identities were confirmed by the Post with US officials after Anne Neuberger, White House's deputy national security adviser, said that nine federal agencies were breached in the SolarWinds hack campaign.

A NASA spokeswoman added that the federal agency is working with CISA on "Mitigation efforts to secure NASA's data and network."

Microsoft shared a detailed timeline of the attacks& showing that the state hackers trojanized the company's Orion IT monitoring platform in February 2020 and later deployed a backdoor using the software's update mechanism on compromised networks in late-March.

Last week, Microsoft also revealed that the SolarWinds hackers accessed and downloaded source code for a limited number of Azure, Intune, and Exchange components.


News URL

https://www.bleepingcomputer.com/news/security/nasa-and-the-faa-were-also-breached-by-the-solarwinds-hackers/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Solarwinds 44 0 80 95 40 215
Nasa 7 0 5 12 1 18