NASA's Daily Shutdown Threat

Washington, NASA faced about one cybersecurity threat daily during the US government's 35-day partial shutdown in December which furloughed almost all NASA employees, led to missed paychecks and stalled science missions, says a report.

The partial shutdown, which started on December 22 and ended on January 25, became the longest on record, overtaking the previous record of a 21-day impasse in 1995-96 under then President Bill Clinton.

With nearly 95 per cent of NASA employees unable to attend work during the shutdown, those working in the space agency's Security Operations Center (SOC) never stopped fighting cybersecurity threats, the space.com reported on Monday 4th February.

According to SOC's research on incidents throughout the shutdown, the agency, on an average, faced about one cybersecurity threat per day, said Renee Wynn, NASA's Chief Information Officer.

But that does not mean that hackers were breaking into NASA computers every day, the report said.

"NASA is one of the most attacked agency in the federal government when it comes to cybersecurity," said NASA administrator Jim Bridenstine.

"Across the world, there are governments that are very, very interested in what we're doing, because technology ultimately determines the balance of power on Earth, and we are doing things that are very, very advanced technology. There are people who would love to use it not for the benefit of humankind, but for their own power purposes," Bridenstine said.

Over the course of the 35-day shutdown, NASA had to take down at least 35 sites because their security certificates expired, Wynn said.

Websites deemed insecure could be vulnerable to hacking, putting NASA's data at risk.

NASA employees who remained at work during the shutdown also faced problems running certain software programmes on their computers, because they were unable to renew software licenses and install security patches.

However, despite all the security concerns brought on by the crisis, a recent scan by the Department of Homeland Security showed that NASA "had no external-facing, critical issues," Wynn said.

GadgetShow: 

You Might Also Read: 

Shutdown Is Doing Lasting Damage To US National Security:

 

 

« Cyber Insurance Risks Are Moving Too Fast For Underwriters
Unleash Blockchain Into Your Supply Chain »

CyberSecurity Jobsite
Perimeter 81

Directory of Suppliers

CSI Consulting Services

CSI Consulting Services

Get Advice From The Experts: * Training * Penetration Testing * Data Governance * GDPR Compliance. Connecting you to the best in the business.

BackupVault

BackupVault

BackupVault is a leading provider of automatic cloud backup and critical data protection against ransomware, insider attacks and hackers for businesses and organisations worldwide.

DigitalStakeout

DigitalStakeout

DigitalStakeout enables cyber security professionals to reduce cyber risk to their organization with proactive security solutions, providing immediate improvement in security posture and ROI.

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

ON-DEMAND WEBINAR: What Is A Next-Generation Firewall (and why does it matter)?

Watch this webinar to hear security experts from Amazon Web Services (AWS) and SANS break down the myths and realities of what an NGFW is, how to use one, and what it can do for your security posture.

Authentic8

Authentic8

Authentic8 transforms how organizations secure and control the use of the web with Silo, its patented cloud browser.

Concise Technologies

Concise Technologies

Concise Technologies provide specialist IT and telecoms solutions, support services, managed backup, disaster recovery, cyber security and consultancy to SME businesses across the UK and Europe.

Zertificon Solutions

Zertificon Solutions

Zertificon is a leader in professional email encryption and data security.

ATSEC Information Security

ATSEC Information Security

ATSEC is an independent, privately-owned company that focuses on providing laboratory and consulting services for information security.

KIOS Center of Excellence (KIOS CoE)

KIOS Center of Excellence (KIOS CoE)

KIOS carries out top level research in the area of Information and Communication Technologies (ICT) with emphasis on the Monitoring, Control and Security of Critical Infrastructures.

oneM2M

oneM2M

oneM2M is a global organization creating a scalable and interoperable standard for communications of devices and services used in M2M applications and the Internet of Things.

FutureCon Events

FutureCon Events

FutureCon produces cutting edge events aimed for Senior Level Professionals working in the security community, bringing together the best minds in the industry for a unique cybersecurity event.

Cyolo

Cyolo

Cyolo’s Secure Access Service Edge (SASE) platform securely connects onsite and remote users to authorized assets, in the organizational network, cloud or IoT environments and even offline networks.

Illuma Labs

Illuma Labs

Illuma Labs delivers real-time voice authentication and fraud prevention solutions.

Identity Management Institute (IMI)

Identity Management Institute (IMI)

Identity Management Institute (IMI) provides professional training and certification in cyber security with a focus on identity and access management, identity theft, and data protection.

FourNet

FourNet

FourNet is an award-winning provider of cloud and managed services; we work closely with our clients to enable digital transformation across their organisation.

Green Enterprise Solutions

Green Enterprise Solutions

Green Enterprise Solutions are a Namibian company providing Information and Communication Technology (ICT) services to corporate Namibia.

Zitec

Zitec

One of Europe's largest and most prominent full-cycle software development services companies, Zitec is the digital transformation partner to companies in the EU, UK, USA, Canada and ME.

Theos Cyber Solutions

Theos Cyber Solutions

Theos Cyber provides service-first cybersecurity solutions to digital businesses in Asia.

Technology Innovation Institute (TII)

Technology Innovation Institute (TII)

TII is a UAE-based research center that aims to lead global advances in AI, robotics, quantum computing, cryptography and secure communications and more.

SEALSQ

SEALSQ

For the last 25 years, SEALSQ have been developing secure semiconductor chips, secure embedded firmware, and tested hardware provisioning services to serve the vision of a safer connected world.

Cork

Cork

Cork is a purpose-built cyber warranty company for managed service providers (MSPs) serving small businesses (SMBs) and the software solutions they manage.