In a written statement [PDF file] given to the U.S. House of Representatives, NASA has stated that almost all of its portable devices are unencrypted, and 48 were lost or stolen between April 2009 and April 2011.
"One of those was an unencrypted notebook containing algorithms to command and control the International Space Station," writes Ars Technica's Casey Johnston.
"Overall, NASA reported 5,408 security incidents [in 2010 and 2011] involving malware or unauthorized access to its system, costing the agency an estimated $7 million," Johnston writes.
Go to "99% of NASA's portable devices are unencrypted" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.