The National Aeronautics and Space Administration (NASA) has confirmed that the April 2018 data breach was carried out using a Raspberry Pi. In a report published by the NASA Office of Inspector General (OIG) this week, the officials stated that the attackers stole around 500 MB of data, some of it related to Mars missions, from this breach. OIG says that the hackers primarily targeted NASA’s Jet Propulsion Laboratory (JPL) computer network.
Potential Involvement of an APT
OIG suggests that the breach was possibly committed by an advanced persistent threat (APT) group. However, there was no mention of a specific group. “Given the architecture of JPL’s network, the attackers were able to expand their access upon entry and move laterally across the network. Classified as an advanced persistent threat, the attack went undetected for nearly a year,” OIG noted in the report.
After the incident, JPL has deployed additional monitoring agents on its firewalls in order to monitor suspicious activities on its network.