NASA Employee Personal Identifiable Information at Risk After Servers Compromised


Fully [H]
Apr 10, 2003
NASA has sent out a memo to inform employees of a possible data breach that may have exposed the Social Security numbers and other personally identifiable information (PII) to hackers. The space agency does not believe that Agency mission data was affected by the cyber incidents. Agency personnel from 2006 until 2018 are affected by the possible data exfiltration. This includes NASA Civil Service employees. NASA will offer services such as identity protection services and related resources to affected employees past and present after the investigation is completed.

Upon discovery of the incidents, NASA cybersecurity personnel took immediate action to secure the servers and the data contained within. NASA and its Federal cybersecurity partners are continuing to examine the servers to determine the scope of the potential data exfiltration and identify potentially affected individuals. This process will take time. The ongoing investigation is a top agency priority, with senior leadership actively involved. NASA is continuing its efforts to secure all servers, and is reviewing its processes and procedures to ensure that the latest security practices are being followed throughout the agency.
Well played, sir. well played.
Possibly an exploit of NASA's imperial versus metric login process.

Gave intruders an inch and they took a kilo. Comforting to know NASA has put their foot down and won't be taking security for gramted
Whew lucked out, I left well before 2006. Surprised they didn't have records on all employees for all of eternity though.
Apparently it doesn't take a rocket scientist to secure a database.
Yeah just got a notification my credentials from 94-12 were compromised. Their offering us a whole year, whoopee, of credit monitoring.