Hacker Exposes NASA Security Hole

  /     /     /  
Publicated : 22/11/2024   Category : security

Hacker Exposes NASA Security Hole


A Goddard Space Flight Center FTP server was breached by a Romanian whitehat hacker known as TinKode, who cracked a European Space Agency network a month ago.


(click image for larger view)
Slideshow: NASA, Microsoft Reveal Mars In Pictures
A Romanian hacker exposed a security flaw in the servers of NASAs Goddard Space Flight Center, posting
proof
of his intrusion online.
The hacker--who goes by the online name of TinKode--this week posted on his website a screenshot of the index of a directory from an FTP network at NASA facility in Maryland.
TinKode is known as a whitehat hacker who exposes security flaws of companies and government agencies so they will be aware of them and fix them, not for financial gain or to spread malware.
NASA Goddard News Chief Ed Campion confirmed the breach to a NASA Goddard FTP site in an emailed statement from NASA officials Friday, but declined to comment specifically about what has been done to patch the hole.
The necessary steps were taken to protect our infrastructure at the time, officials said, adding that NASA does not discuss details of its IT security but remains vigilant to protect its websites.
In an email interview with
InformationWeek
, TinKode on Friday declined to disclose the kind of security flaw he found in the NASA network, but said he had seen it before. He added that the agency so far has not contacted him about the breach.
TinKode explained in
a blog post
that it was very hard to breach the NASA network, but he was able to do it because the webserver had good protection but wasnt fully secured. He added that it was only possible to infiltrate the network manually, not with applications.
The exposure of the flaw is not the first time TinKode has turned his attention to a space agency. Exactly a month before the NASA post, he posted information about a breach of a network at the European Space Agency. That post included links providing information about the
server
and
accounts
that were breached.
In the new, all-digital issue of InformationWeek: Our 2011 Strategic Security Survey shows increased executive interest in security. Heres what you should do next.
Download it now
. (Free registration required.)

Last News

▸ Making a case for internet wiretapping. ◂
Discovered: 06/01/2025
Category: security
▸ Stealth Mode Enclosed Anti-Botnet Startup Unveils ◂
Discovered: 06/01/2025
Category: security
▸ Tools for Risk and Change Management in Security: Defining Security Posture ◂
Discovered: 06/01/2025
Category: security


Cyber Security Categories
Google Dorks Database
 		Exploits Vulnerability
 		Exploit Shellcodes

CVE List
 		Tools/Apps
 		News/Aarticles

Phishing Database
 		Deepfake Detection
 		Trends/Statistics & Live Infos



Tags:
Hacker Exposes NASA Security Hole