[4721] in WWW Security List Archive

home help back first fref pref prev next nref lref last post

Re: NASA break-in

daemon@ATHENA.MIT.EDU (Dale Drew)
Fri Mar 7 23:08:35 1997

Date: Fri, 07 Mar 1997 20:38:57 -0500
To: jwp@checfs1.ucsd.edu, www-security@ns2.rutgers.edu
From: Dale Drew <ddrew@mci.net>
Errors-To: owner-www-security@ns2.rutgers.edu



A mirror of the NASA WEB site is available at:

http://www.cdc.net/~x/nasa/nasa.html

And the AP story goes something like:

  Hackers Sabotage NASA Web Site
  
   By PAUL RECER AP Science Writer
   
   WASHINGTON (AP) -- A NASA Internet web site was invaded by computer
   hackers who altered a picture of the space shuttle and threatened an
   electronic terrorist attack against corporate America, officials said
   Thursday.
   
   Brian Dunbar, NASA's Internet services manager, said the hackers broke
   into the web site just before noon Wednesday and substituted an
   altered page for one routinely posted by NASA.
   
   He said engineers at the Goddard Space Flight Center in Greenbelt,
   Md., where the web server is located, quickly noticed the change and
   took the server off line. The altered page was available to web
   surfers for only about 30 minutes, Dunbar said.
...
...
...

   Dunbar said the HAGIS group has not been identified, but that a
   criminal investigation is under way by NASA's inspector general's
   office.
   
   AP-NY-03-06-97 1815EST

I do not believe that any great deal of sophistication was required
on the intruders part to do their damage.  The system wasn't particularly
well insulated from an attack.

                 "Success through teamwork"
===============================================================
Dale Drew                                MCI Telecommunications
Sr. Manager                                internetMCI Security
                                                    Engineering
Voice:  703/715-7058                    Internet: ddrew@mci.net
Fax:    703/715-7066                MCIMAIL: Dale_Drew/644-3335

At 01:55 PM 3/7/97 -0800, jwp@checfs1.ucsd.edu wrote:
>Has anyone seen any details on the break-in at NASA's web site? I haven't
>yet seen anything here or on RISKS about it yet. The issue of specific
>interest to this list is whether it ocurred via the web server or through
>some more direct attack on the underlying OS.
>
>-- John W Pierce, Chem & Biochem, UC San Diego
>   jwp@ucsd.edu
>
>
home help back first fref pref prev next nref lref last post