A group of Iranian hackers calling themselves the Cyber Warriors Team recently claimed to have accessed thousands of NASA researchers' user information.
"In a May 16 statement posted on Pastebin, the group claimed (in poorly constructed English) to have exploited a vulnerability in a login system to gain administrative rights. ... Cyber Warriors Team is apparently an independent group of Iranian student hackers and programmers who promised to post video of the NASA attack at a later date," writes Kaspersky's Anne Saita.
"The Cyber Warriors Team (CWT) said in its post that it had written an HTTPS protocol scanner to find weaknesses, and had found an existing vulnerability in the NASA website, which was identified as that of NASA's Solicitation and Proposal Integrated Review and Evaluation System (NSPIRES) site," writes Dark Reading's Kelly Jackson Higgins. "The hackers also posted a link to a screen shot of the hijacked cert."
"We obtain User information for thousands of NASA researcher With Emails and Accounts of other users," the hackers wrote. "Send For You soon Videos of Man in the middle attack and Stealing relationship ( Addressing security managers at NASA ). Next you will see Ability and Power of our team."https://o1.qnsr.com/log/p.gif?;n=203;c=204650394;s=9477;x=7936;f=201801171506010;u=j;z=TIMESTAMP;a=20392931;e=i
"Although still unconfirmed, this alleged security breach is not the first attack to be levied against the space agency in an attempt to either harvest internal confidential files or to warn the agency to plug its leaks," notes MSNBC's Matt Liebowitz. "Earlier this month, NASA, along with the European Space Agency, confirmed that a hacking group called 'The Unknowns' successfully penetrated its servers. The Unknowns did not leak any confidential information to the public, but instead informed NASA where the security bug was found so it could be fixed."