NASA's Daily Shutdown Threat

Uploaded on 2019-02-15 in GOVERNMENT-National, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Washington, NASA faced about one cybersecurity threat daily during the US government's 35-day partial shutdown in December which furloughed almost all NASA employees, led to missed paychecks and stalled science missions, says a report.

The partial shutdown, which started on December 22 and ended on January 25, became the longest on record, overtaking the previous record of a 21-day impasse in 1995-96 under then President Bill Clinton.

With nearly 95 per cent of NASA employees unable to attend work during the shutdown, those working in the space agency's Security Operations Center (SOC) never stopped fighting cybersecurity threats, the space.com reported on Monday 4th February.

According to SOC's research on incidents throughout the shutdown, the agency, on an average, faced about one cybersecurity threat per day, said Renee Wynn, NASA's Chief Information Officer.

But that does not mean that hackers were breaking into NASA computers every day, the report said.

"NASA is one of the most attacked agency in the federal government when it comes to cybersecurity," said NASA administrator Jim Bridenstine.

"Across the world, there are governments that are very, very interested in what we're doing, because technology ultimately determines the balance of power on Earth, and we are doing things that are very, very advanced technology. There are people who would love to use it not for the benefit of humankind, but for their own power purposes," Bridenstine said.

Over the course of the 35-day shutdown, NASA had to take down at least 35 sites because their security certificates expired, Wynn said.

Websites deemed insecure could be vulnerable to hacking, putting NASA's data at risk.

NASA employees who remained at work during the shutdown also faced problems running certain software programmes on their computers, because they were unable to renew software licenses and install security patches.

However, despite all the security concerns brought on by the crisis, a recent scan by the Department of Homeland Security showed that NASA "had no external-facing, critical issues," Wynn said.

GadgetShow: 

You Might Also Read: 

Shutdown Is Doing Lasting Damage To US National Security:

 

 

« Cyber Insurance Risks Are Moving Too Fast For Underwriters
Unleash Blockchain Into Your Supply Chain »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Cyber Security Supplier Directory

Cyber Security Supplier Directory

Our Supplier Directory lists 6,000+ specialist cyber security service providers in 128 countries worldwide. IS YOUR ORGANISATION LISTED?

LockLizard

LockLizard

Locklizard provides PDF DRM software that protects PDF documents from unauthorized access and misuse. Share and sell documents securely - prevent document leakage, sharing and piracy.

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

Jooble

Jooble

Jooble is a job search aggregator operating in 71 countries worldwide. We simplify the job search process by displaying active job ads from major job boards and career sites across the internet.

RioRey

RioRey

The DDoS mitigation specialist, from single server to Enterprise wide carrier level networks the RioRey Solution provides effective immediate and easy to manage protection.

Security Industry Association (SIA)

Security Industry Association (SIA)

The SIA's mission is to be a catalyst for success​ within the global security industry through information, insight and influence.

Redcentric

Redcentric

Redcentric is a leading UK IT managed services provider. We deliver managed IT, cloud computing, data backup, information security services and managed networks.

Ericsson

Ericsson

Ericsson is a leading provider of telecommunications services and network infrastructure solutions including all aspects of network security.

Zighra

Zighra

Zighra is a leading provider of On-Device AI solutions for continuous authentication and fraud detection on mobile and web applications.

Romanian Accreditation Association (RENAR)

Romanian Accreditation Association (RENAR)

RENAR is the national accreditation body for Romania. The directory of members provides details of organisations offering certification services for ISO 27001.

Project Moore

Project Moore

Project Moore is an Amsterdam law firm specialising in IT-law and privacy.

Japan Cybersecurity Innovation Committee (JCIC)

Japan Cybersecurity Innovation Committee (JCIC)

JCIC is an independent and not-for-profit thinktank to establish a secure and safe digital society.

IntelligInts

IntelligInts

IntelligInts provide 24×7 threat monitoring, hunting, alerting, and mitigation in our world class Security Operations Center.

Greenberg Traurig (GT)

Greenberg Traurig (GT)

Greenberg Traurig, LLP (GT) is a global law firm with offices in 40 locations in the United States, Latin America, Europe, Asia, and the Middle East.

Entara

Entara

Entara (formerly YJT Solutions) is an eXtended Service Provider (XSP) focused on providing cutting edge technology and cyber security solutions to companies in regulated industries.

AMSYS Innovative Solutions

AMSYS Innovative Solutions

AMSYS is a full-service, 24/7/365 IT solutions, Cybersecurity & Managed Service Provider.

Artifice Security

Artifice Security

Artifice Security will demonstrate real-world attacks on your network, web applications, infrastructure, and personnel to expose your hidden security risks.

Esprinet

Esprinet

The Esprinet Group is an enabler of the technology ecosystem: a team of people who promote access to technology through an extensive network of professional resellers.

Prembly

Prembly

Prembly are a compliance and security infrastructure company.

Index Engines

Index Engines

Index Engines is the world’s leading AI-powered analytics engine to detect data corruption due to ransomware.