Subscribe to our free daily newsletters
  Space Travel News  




Subscribe to our free daily newsletters



SPACE TRAVEL
NASA computer servers vulnerable to attack: audit

by Staff Writers
Washington (AFP) March 28, 2011
NASA's inspector general warned Monday that computer servers used by the US space agency to control spacecraft were vulnerable to cyber attack through the Internet.

"We found that computer servers on NASA's agency-wide mission network had high-risk vulnerabilities that were exploitable from the Internet," NASA inspector general Paul Martin said in an audit of NASA's network security.

"Specifically, six computer servers associated with IT assets that control spacecraft and contain critical data had vulnerabilities that would allow a remote attacker to take control of or render them unavailable," the report said.

It said a cyber attacker who managed to penetrate the network could use compromised computers to exploit other weaknesses and "severely degrade or cripple NASA's operations."

The inspector general's audit of NASA's computer security found "network servers that revealed encryption keys, encrypted passwords, and user account information to potential attackers.

"These data are sensitive and provide attackers additional ways to gain unauthorized access to NASA networks," the report said.

The inspector general warned that "until NASA addresses these critical deficiencies and improves its IT security practices, the agency is vulnerable to computer incidents that could have a severe to catastrophic effect on agency assets, operations, and personnel."

The inspector general performed the audit after NASA experienced a number of cyber intrusions that the report said resulted in the "theft of export-controlled and other sensitive data from its mission computer networks."

The inspector general cited a May 2009 incident in which cyber criminals infected a computer system that supports one of NASA's mission networks.

"Due to the inadequate security configurations on the system, the infection caused the computer system to make over 3,000 unauthorized connections to domestic and international Internet Protocol (IP) addresses including addresses in China, the Netherlands, Saudi Arabia, and Estonia," the report said.

It said that in January 2009, cybercriminals stole 22 gigabytes of export-restricted data from a Jet Propulsion Laboratory computer system.

The inspector general recommended that NASA immediately act to mitigate risks on Internet-accessible computers on its mission networks and carry out an agency-wide IT security risk assessment.



Share This Article With Planet Earth
del.icio.usdel.icio.us DiggDigg RedditReddit
YahooMyWebYahooMyWeb GoogleGoogle FacebookFacebook



Related Links
Space Tourism, Space Transport and Space Exploration News



Memory Foam Mattress Review
Newsletters :: SpaceDaily :: SpaceWar :: TerraDaily :: Energy Daily
XML Feeds :: Space News :: Earth News :: War News :: Solar Energy News


SPACE TRAVEL
NASA Makes Selection For Integrated Communications Services
Washington DC (SPX) Mar 28, 2011
NASA selected Science Applications International Corporation (SAIC) of McLean, Va., for the NASA Integrated Communications Services (NICS) contract. SAIC will provide managerial and technical expertise to support NASA's Office of the Chief Information Officer (CIO) for corporate and mission communications needs, including local area network management at all NASA centers. Functions include ... read more







SPACE TRAVEL
Next Ariane 5 Mission Ready For March 30 Liftoff

Another Ariane 5 Completes Its Initial Build-Up At The Spaceport

Two Ariane 5 And One Soyuz Flights Are Now Being Prepared

ILS Protests Unfair Subsidies To Arianespace

SPACE TRAVEL
Next Mars Rover Gets A Test Taste Of Mars Conditions

Alternatives Have Begun In Bid To Hear From Spirit

Opportunity Completes Study Of Ruiz Garcia Rock

Time Is Now For Human Mission To Mars

SPACE TRAVEL
84 Teams To Compete In NASA Great Moonbuggy Race

A New View Of Moon

Super Full Moon

LRO Delivers Treasure Trove Of Data

SPACE TRAVEL
Later, Uranus: New Horizons Passes Another Planetary Milestone

Can WISE Find The Hypothetical Tyche In Distant Oort Cloud

Theory: Solar system has another planet

Launch Plus Five Years: A Ways Traveled, A Ways To Go

SPACE TRAVEL
NASA Announces 2011 Carl Sagan Fellows

Report Identifies Priorities For Planetary Science 2013-2022

Planetary Society Statement On Planetary Science Decadal Survey For 2013-2022

Meteorite Tells Of How Planets Are Born In A Swirl Of Dust

SPACE TRAVEL
TEXUS 49 Lifts Off With Four German Experiments On Board

A Reusable Manned Deep - Space Craft

NASA's Successful 'Can Crush' Will Aid Heavy-Lift Rocket Design

XCOR And ULA Demonstrate Revolutionary Rocket Engine Nozzle Technology

SPACE TRAVEL
What Future for Chang'e-2

China setting up new rocket production base

China's Tiangong-1 To Be Launched By Modified Long March II-F Rocket

China Expects To Launch Fifth Lunar Probe Chang'e-5 In 2017

SPACE TRAVEL
When Is An Asteroid Not An Asteroid

Stardust Fires Up Main Engine For Final Burn

Dawn Opens Its Eyes, Checks Its Instruments

ESA Remembers The Night Of The Comet


The content herein, unless otherwise known to be public domain, are Copyright 1995-2010 - SpaceDaily. AFP and UPI Wire Stories are copyright Agence France-Presse and United Press International. ESA Portal Reports are copyright European Space Agency. All NASA sourced material is public domain. Additional copyrights may apply in whole or part to other bona fide parties. Advertising does not imply endorsement,agreement or approval of any opinions, statements or information provided by SpaceDaily on any Web page published or hosted by SpaceDaily. Privacy Statement