Security News
NASA and the US Federal Aviation Administration have also been compromised by the nation-state hackers behind the SolarWinds supply-chain attack, according to a Washington Post report. NASA is an independent U.S. federal agency coordinating its civilian space program.
While the agency experienced 1,468 incidents, its budget was decreased last year, according to a report by Atlas VPN. There were 1,468 cyber incidents at NASA in 2019-an increase of a staggering 366%, according to data extracted and analyzed by Atlas VPN, which released the findings in a new report. Cyber incidents at NASA can affect national security, intellectual property, and individuals whose data could be lost due to data breaches.
That spike in users also exposed a growing list of security flaws: Zoom bombing trolls have emerged, user email addresses and photos have leaked, calls aren't being end-to-end encrypted, and flaws found in the Zoom installer allow an attacker to gain root access to computers that run a malicious version of it. These security flaws have prompted some organizations, companies, governments, government agencies, and schools to ban Zoom or restrict its use.
A memo sent out this week to all NASA personnel warns that the agency has seen a significant increase in cyberattacks, including phishing and malware attacks, while its employees work remotely during the COVID-19 outbreak. The memo, obtained by space news website SpaceRef, reveals that the number of email phishing attempts doubled in the past few days and there has been an "Exponential increase" in malware attacks on NASA systems.
Semmle's flaw-finding queries can be shared and used on multiple projects On Wednesday, Microsoft's GitHub said it has acquired Semmle, a San Francisco-based software analysis platform for finding...
The Threatpost team discusses the top news of the week - from a NASA cyberincident to dating app privacy issues.
Report Outlines 10 Years' Worth of Serious IncidentsHackers have repeatedly stolen valuable data - including launch codes and flight trajectories for spacecraft - from NASA's Jet Propulsion...
Rampant security-operations bungling allowed cyberattackers to infiltrate JPL's network, which carries human mission data.
Office of the Inspector General brings lab back down to Earth NASA's Jet Propulsion Lab still has "multiple IT security control weaknesses" that expose "systems and data to exploitation by cyber...
The U.S. National Aeronautics and Space Administration (NASA) has again failed to implement an efficient cybersecurity program, according to a review by the NASA Office of Inspector General (OIG)...