A rogue Raspberry Pi helped hackers access NASA JPL systems Engadget

Written By Monday, July 22, 2019 Add Comment Edit

Sponsored Links

gemini.png
dims?quality=85&image_uri=https%3A%2F%2Fo.aolcdn.com%2Fimages%2Fdims%3Fcrop%3D5049%252C3144%252C0%252C30%26quality%3D85%26format%3Djpg%26resize%3D1600%252C996%26image_uri%3Dhttps%253A%252F%252Fs.yimg.com%252Fos%252Fcreatr-images%252F2019-06%252Fd9d5e450-9324-11e9-9235-97912d046094%26client%3Da1acac3e1b3290917d92%26signature%3D68b3bdb215cb28c36dd56ec9f139d1e618652b90&client=amp-blogside-v2&signature=e058f956d79b06566d6a78c30e8eb417cd06b4dc Andrei Stanescu through Getty Images

NASA's Jet Propulsion Laboratory (JPL) suffers from a couple of cybersecurity weaknesses notwithstanding the advances it has accomplished in space era, according to the organisation's Office of Inspector General (PDF). Investigators appeared into the research center's community safety controls after an April2019 safety breach, wherein a Raspberry Pi that changed into now not legal to be linked to the JPL community changed into targeted by means of hackers. The attackers were able to scouse borrow 500 megabytes of facts from certainly one of its predominant task systems, and they also used that hazard to find a gateway that allowed them to go deeper into JPL's network.

Diving deeper into the gadget gave the hackers get right of entry to to several predominant missions, which include NASA's Deep Space Network -- its network of spacecraft conversation facilities. As a result, the security groups of some sensitive applications, such as the Orion Multi-Purpose Crew Vehicle and the International Space Station, have selected to disconnect from the employer's community.

In addition to having reduced visibility to devices linked to its community and to now not retaining one-of-a-kind components of its community separate, investigators have additionally found instances of security tickets no longer being resolved for extended periods of time. In some instances, the tickets sat unresolved for as long as 180 days. The investigators have additionally mentioned that JPL's incident control and reaction practices deviate from NASA's pointers.

The OIG encouraged a fix for all those problems, and NASA agreed to they all except one: organising a proper threat-hunting system to find flaws before they even motive issues. It will verify if JPL follows through earlier than closing the investigation completely.

Via: Threatpost
In this newsletter: gear, jpl, nasa, security
All products recommended via Engadget are decided on by using our editorial team, independent of our figure agency. Some of our tales include associate links. If you buy something via this type of links, we might also earn an affiliate commission.
128 Shares
Share
Tweet
Share
Save
Comments

Let's block commercials! (Why?)


//www.engadget.com/2019/06/20/nasa-jpl-cybersecurity-weaknesses/
2019-06-20 09:01:24Z
CAIiEKvmzk-COeZcrQeNAvJKKG4qGAgEKg8IACoHCAowwOjjAjDp3xswpuqvAw

0 Response to "A rogue Raspberry Pi helped hackers access NASA JPL systems Engadget"

Post a Comment

Subscribe to: Post Comments (Atom)

Iklan Atas Artikel

Iklan Tengah Artikel 1

Iklan Tengah Artikel 2

Iklan Bawah Artikel