NASA just revealed that it was hacked last year. The famous agency said that an unknown hacker gained access to one of its servers that was used for storing the personal data of current and former employees.
All their Social Security Numbers were compromised! For now, it is unclear why the agency waited until 2019 to notify its employees and the press!
This is how NASA employees might be affected, and how the breach could have been avoided…
In this situation is funny that the hacker remains unknown. Computer systems authenticate and authorize access to people and other “things,” such as other software, bots, and machines.
The bad news here is that no one knows who is to blame. Because of this, who knows what the unknown hacker will do with the information but; by looking past breaches, it’s highly likely that it will end up for sale on the dark web.
Remember everything can be hacked. In order to stay away from any threats related to the cyber world, we recommend the install of antivirus for Windows or antivirus for Mac on every device that you own, depending on which OS your device is running. If you are a company, it is also recommended to hire every year a specialized cybersecurity company that will run annual tests on your company’s network. These tests include penetration testing and ethical hacking tests;
More worrying is the fact that the affected NASA employees may find themselves at risk of social engineering, unwanted advertising or other potentially fraudulent risks.
Cybersecurity experts are saying that If NASA had implemented basic advice from the National Institute of Standards and Technology (NIST) – who have a close relationship with various U.S. Government Administrations – then this breach may not have happened.
Regarding this concerning problem, the NIST stated: ” Using MFA helps by adding an additional layer of security, making it harder for the bad guys to get in. With regard to the individuals that are requesting access, it’s all about risk mitigation.”
If you ask us we would recommend to an organization like NASA to take further action than simply implementing MFA on top of the usual password. For example, using a layered approach including password vaulting, automatic recording of access (including MFA) as well as real-time behavioral analysis and alerting.
Keep in mind that our modern society is dependent on computers, mobile devices, and the use of the internet always stay safe and secured.
We would continue to monitor the cybersecurity world. Meanwhile, users should keep a keen eye out for any cyber attacks. Remember to use an antivirus for Windows or antivirus for Mac in every device that you own, depending on which OS your machine is running, If you are a company we recommend to hire every year a specialized cybersecurity company that will run annual tests on your company’s network, tests like this include: penetration testing and ethical hacking.