NASA says it is retreating its operations and security procedures for the network after exposed social security numbers on the computer and other personal information about existing and former agency employees.
The breach was discovered in October, and its impact and impact have not yet been determined. NASA says it will provide identity protection services to all those likely to have been affected.
NASA, a separate Web site created by former NASA official Keith Kaunton, first exposed the incident in a publication published on Tuesday citing NASA's internal memo. The note notes that Agency staff hired, relocated, or left by NASA between July 2006 and October 2018 may be affected.
Due to what it deserves, NASA computers have been targeted by intruders several times over the years. Recent incidents include a smear campaign for Website 2013 by Brazilian activists and a series of reported intrusions in 2011.
"In the last two times there has been a data breach that has been directly affected since I was a former NASA employee, although I left the agency 25 years ago," Kate wrote today at a follow-up site.
In another publication, Cowing wrote that NASA's record of compliance with federal regulations governing information technology and cybersecurity was "pathetic." He referred to a registration card from the State Control and Reform Committee, which gave NASA a failing grade in achieving cyber security goals. (To be fair, NASA's overall estimate of IT was average "C").
In a statement, NASA said the investigation into the latest security breach was "NASA's top priority." Here is the full e-mail statement:
"On October 23, 2018, NASA security personnel began investigating potential solutions to NASA's servers, one of which contains personal identification information (PII) on current and former NASA staff and may be filtered. Identity protection services for all individuals who are likely to be affected.
"NASA does not believe that any of the agency's missions were compromised by the intrusion, and once discovered, NASA has taken immediate action to secure the affected servers and has been conducting forensics since then – and it will take some time.
"NASA takes cybersecurity seriously and is committed to dedicating resources to ensure the security of the agency's information and IT systems. The agency continues its efforts to secure all servers, and to reduce its operations and procedures to ensure that the latest security practices are followed throughout the agency. "