CyberInsecure.com

Daily cyber threats and internet security news: network security, online safety and latest security alerts
December 7th, 2009

NASA’s Instrument Systems And Software Engineering Division Websites Hacked

Miscreants took advantage of weak security to hack into two NASA-run websites over the weekend.

The websites of NASA’s Instrument Systems and Technology unit and Software Engineering division were broken into and screenshots illustrating the hack posted online. Hackers appear to have taken advantage of SQL Injection flaws and poor access controls in mounting the attack, reports Gunter Ollmann, an ex-IBM security expert who is now VP of Research at security firm Damballa.

Obfuscated screenshots from the hack were subsequently posted onto a full disclosure mailing list.

The motives and perpetrators of the attack remain unclear at the time of writing. Messing around with sites run by the space agency is a risky business for hackers, as Gary McKinnon and others have discovered, though whether anything will happen over the latest break-in is unclear.

Credit: The Register

Share this item with others:

More on CyberInsecure:
  • File Sharing Program Exposes Prince William County Public School Private Records
  • Honda Suffers Data Breach, Personal Information Of 283,000 Customers Exposed
  • Malaysian Kaspersky Antivirus Website Has Been Hacked In An SQL Injection Attack
  • Three Computers With Personal Data Compromised At The University of Colorado
  • Neo-Nazi Forum “Blood & Honour” Hacked By German Anti-Fascist Group, 800MB Of Content Available For Download

    • Posted in Hacked, SQL Injections, Targeted Attacks | Print This Post Print This Post

    This entry was posted on Monday, December 7th, 2009 at 7:36 pm and is filed under Hacked, SQL Injections, Targeted Attacks. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.

    If you found this information useful, consider linking to it from your own website.
    Just copy and paste the code below into your website (Ctrl+C to copy)
    It will look like this: NASA’s Instrument Systems And Software Engineering Division Websites Hacked

    Leave a Reply

    Comments with unsolicited links to other resources will be marked as spam. DO NOT leave links in comments. Please leave your real email, it wont be published.

    *
    To prove you’re a person (not a spam script), type the security word shown in the picture. Click on the picture to hear an audio file of the word.

    « «
    » »