Back to Data breach

Data breach

Data breach at NASA exposes sensitive information of employees.

In October 2018, some of NASA's current and former employees may have had personal information stolen in a data breach. "Civil Service employees who were onboarded, separated from the agency, and/or transferred between centers from July 2006 to October 2018 may have been affected," NASA's Assistant Administrator Bob Gibbs said in a memo announcing the breach.

NASA confirmed it was working with federal cybersecurity partners to investigate the breach. The breach was identified to have happened on October 23rd. Apparently the intruder gained access to a server containing the personal information of current and former employees, including Social Security numbers. The full scope of the breach is unknown, so it's not entirely clear if the data itself was compromised or just the server containing it.

NASA is notifying all of its employees about the breach, regardless of whether their information was likely compromised. NASA said that it will provide identity protection services to affected employees, both old and current. NASA also said that it didn't believe that any of its missions were jeopardized by the hack. NASA suffered similar security breaches in 2011 and 2016.

Don't want to make the news for the wrong reasons? Download ManageEngine Log360, the tool that can help combat internal and external security attacks.

How ManageEngine can help in such incidents.

Log360, our comprehensive SIEM solution, can help your organization:

  • Identify cross-site scripting (XSS) attacks, malicious file installation, DoS attacks, SQL injection, and more with Log360's real-time correlation capability. Receive instant notifications about attempted and successful attacks, and generate detailed investigation reports to prevent future attacks.
  • Detect potential intrusions or unauthorized network access attempts by comparing your network's log data with data from Log360's list of globally blacklisted IPs and its STIX/TAXII threat feed processors.
  • Find potential insider threats with the user behavior analytics engine powered by machine learning, which creates a baseline of normal activities that are specific to each user and notifies security personnel instantly when there is a deviation from this norm.
  • Monitor user activity within a database, account and permission changes in database servers, and more.

Get started with Log360.

log-management-real-time-active-directory-change-auditing

Latest DoS and DDoS attacks

Latest Brute force attack

Latest Crypto ransomware

Latest Advanced persistent threat (APT)

Compliance violation

Stay In The Know

Subscribe to our digest to get your weekly dose of cyber security updates straight to your inbox.

Please enter a business email id
 

By clicking 'I’m interested', you agree to processing of personal data according to the Privacy Policy

© 2019 Zoho Corporation Pvt. Ltd. All rights reserved.