PDA

View Full Version : Full Functional Control of JPL Networks



publius
2012-Mar-02, 03:29 AM
Bombshell report from NASA's inspector general. Chinese hackers gained full control of sensitive JPL computer networks back in 2011:

http://oig.nasa.gov/congressional/FINAL_written_statement_for_%20IT_%20hearing_Febru ary_26_edit_v2.pdf




Increasingly, NASA has become a target of a sophisticated form of cyber attack known as advanced persistent threats (APTs). APTs refer to those groups that are particularly well resourced and committed to steal or modify information from computer systems and networks without detection. The individuals or nations behind these attacks are typically well organized and well funded and often target high-profile organizations like NASA. Moreover, even after NASA fixes the vulnerability that permitted the attack to succeed, the attacker may covertly maintain a foothold inside NASA’s system for future exploits.

In FY 2011, NASA reported it was the victim of 47 APT attacks, 13 of which successfully compromised Agency computers. In one of the successful attacks, intruders stole user credentials for more than 150 NASA employees – credentials that could have been used to gain unauthorized access to NASA systems. Our ongoing investigation of another such attack at JPL involving Chinese-based Internet protocol (IP) addresses has confirmed that the intruders gained full access to key JPL systems and sensitive user accounts. With full system access the intruders could: (1) modify, copy, or delete sensitive files; (2) add, modify, or delete user accounts for mission-critical JPL systems; (3) upload hacking tools to steal user credentials and compromise other NASA systems; and (4) modify system logs to conceal their actions. In other words, the attackers had full functional control over these networks.

HenrikOlsen
2012-Mar-02, 06:11 AM
Anyone connecting mission-critical systems to the internet is asking for what they'll get.

publiusr
2012-Mar-03, 07:07 PM
So if we see rover tracks on Mars spelling out "kilroy wuz here" we will know why.

NEOWatcher
2012-Mar-05, 03:46 PM
So if we see rover tracks on Mars spelling out "kilroy wuz here" we will know why.
Isn't that out of date? I thought the latest fad was "zombies ahead".

Strange
2012-Mar-05, 03:55 PM
Are they sure it wasn't the guys from The Big Bang Theory? (trying to impress girls)

publiusr
2012-Mar-09, 11:06 PM
Or maybe Hoagland will have curiosity head for Cydonia...