NASA Investigates SSL Compromise

What is the Noble Truth of the Way Leading to the Cessation of Suffering?

It is the Noble Eightfold Path, that is to say: Right View, Right Intention, Right Speech, Right Action, Right Livelihood, Right Effort, Right Mindfulness and Right Concentration.

You are here: Home

Career

Monday, 21 May 2012 11:44

NASA Investigates SSL Compromise

Written by Rich Wermske

font size decrease font size increase font size
Print

Rate this item

(0 votes)

A NASA spokesperson told SecurityWeek they were investigating claims made by a group of Iranian hackers May 16 that they have compromised the SSL certificate used on the NASA Solicitation and Proposal Integrated Review and Evaluation System (NSPIRES) Web site.

The Iranian student group comprised of programmers and hackers — known as the Cyber Warriors Team — claimed to have compromised the SSL cert was compromised by exploiting an existing vulnerability within the portal’s log-in system.

Once they had control over the certificate, they claimed to have used it to ―obtain User information for thousands of NASA researcher With Emails and Accounts of other users [sic].

If the claims are true, this wouldn’t be the first time the space agency has had security issues. In March, NASA Inspector General Paul K. Martin told the House’s Committee on Science, Space, and Technology’s Subcommittee on Investigations and Oversight, that the agency faces serious challenges when it comes to protecting its information and systems from cyber attacks.

Martin said that NASA was the victim of 47 APT attacks, 13 of which compromised agency systems during FY 2011. In one incident, attackers captured user credentials for more than 150 NASA employees that could have been used to gain unauthorized access to NASA systems.

Source: http://www.securityweek.com/nasa-investigating-possible-ssl-compromise

Read 378 times Last modified on Tuesday, 22 May 2012 12:05

Published in Career

Tagged under

Rich Wermske

I am a native Houstonian, disabled American veteran, aspiring Buddhist, and a 40-Something information technology leader, paralegal, and management wonk, living life on life's terms, with my partner of eleven years.

While I still struggle with humility, I strive to make willingness, honesty, and open-mindedness a cornerstone in all my affairs. I work hard, and I believe I play well with others. Eleven years of sobriety has taught me that none of "this" means a damn thing if I'm unwilling, dishonest, or close-minded.

While I've lived the roller-coaster, today I rarely have to defend or justify the actions of that person I see looking back at me in the mirror...

Website: www.wermske.com

Latest from Rich Wermske

Related items

More in this category: « HULK DDoS Tool Smash Web Servers Don't be an Ogre »

I don't agree with all of this, but it's food for thought. -rw