NASA servers hacked

posted by abennett
Be the first to comment | 1I like it!
More »
on this topic
February 3, 2003, 04:35 PM —  ITworld.com — 

Making a tragic day even worse, several servers at NASA's Jet Propulsion Laboratory (JPL) were broken into on Saturday by a group of hackers protesting U.S. policy in the Middle East.

Web pages hosted on those servers were replaced with pages displaying a political message critical of U.S. policy in Iraq, according to a report by UK security company mi2g Ltd. and confirmed by a National Aeronautics and Space Administration (NASA) spokesman.

"All I can tell you is that over the weekend several servers at the Jet Propulsion Laboratory were broken into and Web pages were replaced with pages containing political messages, " said Brian Dunbar, a NASA spokesman.

The digital attacks on nine of the JPL's servers occurred at just past 2 p.m. Pacific Time (22:00 GMT) on Saturday evening and lasted for more than one and a half hours. The targeted servers supported the jpl.nasa.gov Web site and were running Sun Microsystems Inc.'s Solaris operating system, according to mi2g.

Dunbar declined to provide specific details about how many or what kind of servers were targeted, but said the affected machines were taken offline for about five hours following the attack.

The source of the attacks was a group of hackers that called themselves "Trippin Smurfs," according to mi2g. The origin of that group was being investigated, according to mi2g.

The hackers replaced JPL Web site content with a message that read, in part:

"I noticed that a war with Iraq is iminent...and i wonder why?!...When is this going to stop? Why does U.S. attack Iraq?"

NASA would not indicate whether other information stored on the servers was tampered with or stolen.

"We don't go into that level of detail on security breaches," Dunbar said.

Despite occurring hours following the disintegration of the space shuttle Columbia as it reentered Earth's atmosphere on Saturday morning, there was no mention of the disaster in the message posted by the hacker group. It was unclear whether the attack was prompted by the crash.

Also unclear are links between Trippin Smurfs and fundamentalist hacker groups such as the pro-Islamic hacker group Unix Security Guard, according to mi2g.

Mi2g became aware of the attack after monitoring messages posted on bulletin boards used by various hacker groups, according to Jan Andresen of mi2g's Intelligence Unit.

Dunbar declined to comment on whether the attack might have been linked to the Columbia disaster, but said that NASA and the JPL are common targets for hackers.

Although not unprecedented, successful attacks in which hackers are able to compromise NASA computers are "rarer and rarer." The agency did suffer similar Web site defacement in 1997, according to Dunbar.

NASA is working with law enforcement to track down the perpetrators of this weekend's attack. That investigation will start with NASA's Office of Inspector General, but may expand to include the U.S. Federal Bureau of Investigation, according to Dunbar.

Unrelated reports of broken links and missing pages on NASA's home page, www.nasa.gov, were the product of a recent overhaul of the agency's Web page and efforts to deal with a flood of traffic following the Columbia disaster, not evidence of further attacks, Dunbar said.

NASA launched an updated Web site at midnight on Friday, switching from a single Web server housed in the basement of NASA's headquarters to a more robust Web site infrastructure managed by AT&T Corp., according to Dunbar.

While the move enabled the agency to handle the more than 100 million hits to its Web site in the hours following the loss of the first space shuttle in 17 years, links to some archived Web site material on an FTP server managed by NASA need to be touched up, according to Dunbar.

ITworld.com

I like it!
Post a comment
The content of this field is kept private and will not be shown publicly.
  • Allowed HTML tags: <a> <em> <strong> <cite> <code> <ul> <ol> <li> <dl> <dt> <dd>
  • Lines and paragraphs break automatically.
Free books

Essential JavaFX
Get started building rich Web apps quickly with an introduction to the power of JavaFX key features -- scene node graphs, nodes as components, the coordinate system, layout options, colors and gradients, custom classes with inheritance, animation, binding, and event handlers.Enter now!

The Nomadic Developer
Consulting can be hugely rewarding, but it's easy to fail if you are unprepared. To succeed, you need a mentor who knows the lay of the land. Aaron Erickson is your mentor, and this is your guidebook. Enter now!

Featured Sponsor
Case Study: AISO grows its "green" business

AISO founders envisioned a Web hosting company that was environmentally friendly. While the company employed energy-efficient innovations like solar panels, its infrastructure produced unacceptable power and cooling requirements. Find out how AISO leveraged AMD technology to overcome their challenge in this case study white paper.

Download this white paper »
Myth of the Million Dollar Database

In this whitepaper, Scalar explores the opportunity to change the landscape with respect to mission critical databases built around Oracle. Leveraging technologies such as Linux, high-end commodity processing power and Oracle RAC technology to architect, design, build and maintain database infrastructure that delivers maximum availability, reliability and performance at a fraction of traditional cost.

Download this white paper »
Success Story: Weather.com handles whatever nature serves up

On a typical day, weather.com, the Web site for The Weather Channel in Atlanta, serves up between 15 million and 20 million page views. But in September 2004, when back-to-back hurricanes ransacked Florida, the peak traffic on one day more than tripled: over 70 million page views by more than 7 million unique visitors. Read the full success story now.

Download this white paper »
Marketplace