+

Cookies on the Business Insider India website

Business Insider India has updated its Privacy and Cookie policy. We use cookies to ensure that we give you the better experience on our website. If you continue without changing your settings, we\'ll assume that you are happy to receive all cookies on the Business Insider India website. However, you can change your cookie setting at any time by clicking on our Cookie Policy at any time. You can also see our Privacy Policy.

Close
HomeQuizzoneWhatsappShare Flash Reads
 

NASA Jet Propulsion Laboratory network was hacked by targeting a Raspberry Pi that wasn't supposed to be connected to it

Jun 23, 2019, 23:23 IST

Flickr/abuakel

Advertisement

A hacker accessed a NASA lab's network in April 2018, by targeting an unauthorized Raspberry Pi, a pocket-sized computer that connects to the Internet.

During the April 2018 attack, the hacker stole about 500 megabytes of data from 23 files, two of which contained information related to a Mars mission. The hacker used an external user account and moved undetected within JPL's network for about 1o months, according to a June Office of the Inspector General report about cybersecurity at NASA's Jet Propulsion Laboratory (JPL) in Pasadena, CA.

During this time, the hacker was able to poke for weaknesses, such as the Raspberry Pi. According to the report, this Raspberry Pi computer was not authorized, but it had been attached to the lab's network. In turn, the hacker was able to access this network by targeting the Raspberry Pi.

This shows a major weakness, the report says, as that devices can be added to the network without being identified and vetted by security officials. This device should not have been allowed on the network without approval.

Advertisement

The report also found that system administrators did not consistently update the inventory system when devices are added to the network. They have to update this inventory spreadsheet manually, and may not do so if the database isn't working or if system administrators forget to do so.

This opens the possibility of unauthorized devices being added onto the network.

The Raspberry Pi is often used as a tool for beginners to learn to code. This computer can be used to build DIY projects. Some projects that have been built with a Raspberry Pi include phone-activated coffee machines, arcade games, and dog treat dispensers.

NOW WATCH: Google finally revealed Stadia pricing, games, and release date

You are subscribed to notifications!
Looks like you've blocked notifications!
Next Article