A rogue Raspberry Pi helped hackers access NASA JPL systems Engadget

Written By Monday, July 22, 2019 Add Comment Edit

Sponsored Links

gemini.png
dims?quality=85&image_uri=https%3A%2F%2Fo.aolcdn.com%2Fimages%2Fdims%3Fcrop%3D5049%252C3144%252C0%252C30%26quality%3D85%26format%3Djpg%26resize%3D1600%252C996%26image_uri%3Dhttps%253A%252F%252Fs.yimg.com%252Fos%252Fcreatr-images%252F2019-06%252Fd9d5e450-9324-11e9-9235-97912d046094%26client%3Da1acac3e1b3290917d92%26signature%3D68b3bdb215cb28c36dd56ec9f139d1e618652b90&client=amp-blogside-v2&signature=e058f956d79b06566d6a78c30e8eb417cd06b4dc Andrei Stanescu through Getty Images

NASA's Jet Propulsion Laboratory (JPL) suffers from multiple cybersecurity weaknesses despite the advances it has finished in area generation, in line with the employer's Office of Inspector General (PDF). Investigators seemed into the research middle's network security controls after an April2019 protection breach, wherein a Raspberry Pi that become no longer authorized to be related to the JPL network turned into targeted by means of hackers. The attackers had been able to scouse borrow 500 megabytes of information from one of its major challenge structures, and they also used that threat to discover a gateway that allowed them to head deeper into JPL's network.

Diving deeper into the device gave the hackers get entry to to several principal missions, which includes NASA's Deep Space Network -- its network of spacecraft communication facilities. As a end result, the safety groups of a few sensitive programs, inclusive of the Orion Multi-Purpose Crew Vehicle and the International Space Station, have selected to disconnect from the business enterprise's community.

In addition to having reduced visibility to devices connected to its network and to now not keeping exclusive components of its community separate, investigators have also observed times of security tickets no longer being resolved for extended intervals of time. In some cases, the tickets sat unresolved for as long as 180 days. The investigators have also noted that JPL's incident control and response practices deviate from NASA's hints.

The OIG endorsed a restore for all the ones problems, and NASA agreed to they all except one: organising a formal hazard-hunting method to discover flaws earlier than they even motive troubles. It will confirm if JPL follows via earlier than ultimate the research totally.

All products encouraged by Engadget are selected by way of our editorial crew, unbiased of our determine agency. Some of our tales encompass affiliate hyperlinks. If you purchase something through one of these links, we might also earn an associate fee.
Shares
Share
Tweet
Share
Save
Comments

Let's block ads! (Why?)


//www.engadget.com/2019/06/20/nasa-jpl-cybersecurity-weaknesses/
2019-06-20 09:00:12Z
CAIiEKvmzk-COeZcrQeNAvJKKG4qGAgEKg8IACoHCAowwOjjAjDp3xswpuqvAw

0 Response to "A rogue Raspberry Pi helped hackers access NASA JPL systems Engadget"

Post a Comment

Subscribe to: Post Comments (Atom)

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel