Feeds

European Space Agency plays down hack impact

Crucial alien files remain nonexistent

5 things you didn’t know about cloud backup

The European Space Agency has confirmed that a hacker breached its network over the weekend, while playing down the significance of the hack.

TinKode posted admin, content management and file upload (FTP) login credentials on Sunday after pulling off the attack on the space agency. The hacker also posted Apache server configuration files.

However, the servers hit by the hack included less sensitive systems involved in sharing scientific data between the ESA and its partners, an ESA spokesman explained. "The main website was not affected and this has had no effect at all on our internal network," he told El Reg.

The ESA has responded to the attack by taking its FTP servers offline and resetting all login credentials. Users have been informed of the incident, a necessary step, especially if some are making the mistake of using the same user name and password combination over multiple sites.

The file transfer servers affected by the hack were involved in the exchange of astronomical data, such as satellite-source ice-shelf thickness readings. "Although this breach affected only publicly available FTP servers, it's not good that it happened and we'll be tightening up security," the ESA spokesman explained.

The servers will not go online again until security checks are completed, a process likely to take "some days". Meanwhile, the scientific work of the agency will continue, largely unaffected by the assault.

The ESA is withholding details on how the attack was carried out. The motive behind the attack also remains unclear, although claiming bragging rights seems the most likely explanation. TinKode previously mounted a similar attack against Royal Navy systems last year.

The space agency said the hacker had not contacted it either before or since the attack. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
One HUNDRED FAMOUS LADIES exposed NUDE online
Celebrity women victimised as Apple iCloud accounts reportedly popped
Rubbish WPS config sees WiFi router keys popped in seconds
Another day, another way in to your home router
Goog says patch⁵⁰ your Chrome
64-bit browser loads cat vids FIFTEEN PERCENT faster!
NZ Justice Minister scalped as hacker leaks emails
Grab your popcorn: Subterfuge and slur disrupts election run up
HP: NORKS' cyber spying efforts actually a credible cyberthreat
'Sophisticated' spies, DIY tech and a TROLL ARMY – report
NIST to sysadmins: clean up your SSH mess
Too many keys, too badly managed
Scratched PC-dispatch patch patched, hatched in batch rematch
Windows security update fixed after triggering blue screens (and screams) of death
Attack flogged through shiny-clicky social media buttons
66,000 users popped by malicious Flash fudging add-on
New Snowden leak: How NSA shared 850-billion-plus metadata records
'Federated search' spaffed info all over Five Eyes chums
prev story

Whitepapers

Endpoint data privacy in the cloud is easier than you think
Innovations in encryption and storage resolve issues of data privacy and key requirements for companies to look for in a solution.
Implementing global e-invoicing with guaranteed legal certainty
Explaining the role local tax compliance plays in successful supply chain management and e-business and how leading global brands are addressing this.
Advanced data protection for your virtualized environments
Find a natural fit for optimizing protection for the often resource-constrained data protection process found in virtual environments.
Boost IT visibility and business value
How building a great service catalog relieves pressure points and demonstrates the value of IT service management.
Next gen security for virtualised datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.