Hacker reportedly leaks 250GB of NASA’s data
Approximately 631 aircraft and radar videos, 2,143 flight logs, as well as the email addresses, name, and phone number of about 2,414 NASA employees were leaked
A hacker with the twitter handle @CthulhuSec has reportedly leaked about 250GB of data that was stolen from the National Aeronautics and Space Administration (NASA). The hacker made the announcement via his Twitter account. According to a report on Hackread, the hacker was spent several months inside the internal network of the administration.
As per Hackread, approximately 631 aircraft and radar videos along with 2,143 flight logs was released by the hacker along with the email address, name and phone number of about 2,414 employees. The hacker claims that the data that was released is not harmful to NASA.
The recently leaked NASA files as promised from yesterday: https://t.co/gIun25OTri
— TheCthulhu (@CthulhuSec) January 31, 2016
Clarification: NASA data isn't harmful or anything. Some videos and other data I have been asked to mirror. I wouldn't attack NASA 🙂
— TheCthulhu (@CthulhuSec) January 30, 2016
Another public hacking group called AnonSec claims to have breached NASA using the same data. In a self-published paper, called ‘Zine’, the group explains their motive and the technical vulnerabilities that led to the breach.
The group claims that they purchased an “initial foothold” from another attacker about two years ago. The team then began testing the number of machines that “break into” and “root”, which are terms used to describe a complete control over any network or computer. It apparently took them 0.32 seconds to hack into an administrator’s password via brute force hacking techniques.They then gained even deeper access to the intricate systems in NASA and acquire a range of login data via a hidden packet sniffer. Some of the members of the group mapped the network, while others examined the “different missions, databases, and aircraft” listed by NASA. They also deleted records of their presence as they went deeper into the system. Additionally, the group managed to gain access to a password of a system administrator. This gave them complete access to three network-attached storage (NAS) devices, which collect aircraft flight log backups. The group also claims to have gained partial control of a drone by replacing the original route file with one of their own. The new route file directed the drone to crash into the ocean.