Ndiine Raspberry Pi, vakaba data kubva kuNASA

raspibheri-pi

Mune mushumo we Audit uchangobva kuburitswa na NASA, yakazivisa kuti muna Kubvumbi 2018 izvo hackers yakawana space agency agency uye Vakaba dzinosvika mazana 500 MB yedata rine chekuita nemamishinari eMars.

Zvinoenderana neshumo yekudzidza, VaHackers vakapinda muJet Propulsion Laboratory (JPL), inotsigirwa neNASA yakabhadharwa mari nekusimudzira nzvimbo muPasadena, California. Chirevo ichi chinoratidzawo zvimwe zviitiko zvekutyorwa kwedata uye kubiwa kweruzivo munzvimbo dzese dzeanoshanda.

Iyo NASA, Mumakore gumi apfuura, JPL yakasangana nezviitiko zvinoverengeka zvinozivikanwa zvekuchengetedza cyber Vakanganisa zvikamu zvakakosha zvecomputer network.

Kubva muna 2011, vabiridzi vakawana mukana wakazara kumaseva gumi nesere iyo yakatsigira makiyi eJPL mamishini uye vanonzi vakaba ingangoita 87 GB yedata.

Chazhinji munguva pfupi yapfuura, muna Kubvumbi 2018, JPL yakawana kuti account yekunze yevashandisi yakanga yaiswa pangozi uye yaishandiswa kubira mazana mazana mashanu emadhi data kubva kune rimwe remasisitimu ayo makuru.

IOIG yakazivisa kuburikidza neshumo kuti JPL inotambudzwa neakawanda kutadza kushomeka yekuchengetedzwa kwemakomputa inokanganisa kugona kwako kudzivirira, kuona uye kudzikisira kurwiswa kunongedzwa kumasystem ako uye netiweki.

Uku kushaya simba muJPL chengetedzo system inofumura akasiyana NASA masisitimu nedata kune kwakasiyana kurwisa kwevanobira.

JPL inoshandisa iyo Information Technology Security dhatabhesi (ITSDB) kuteedzera nekugadzirisa epanyama zviwanikwa uye zvinoshandiswa pamubato wayo.

Zvisinei, odhita yakawana kuti dhatabhesi ye database haina kukwana uye isiriyo, mamiriro ezvinhu anokanganisa kugona kweJPL kunyatsoongorora, kurondedzera, uye kupindura zviitiko zvekuchengetedza.

Sysadmins haigadzirise zvinyorwa kana uchiwedzera zvishandiso zvitsva kunetiweki.

Kunyanya, 8 yeiyo 11 system manejimendi manejimendi ekugadzirisa iwo gumi nematatu ekuyera sampuro masisitimu akawanikwa achichengetedza tafura yekuverenga yakasarudzika yehurongwa hwavo, kubva kwavanogadziridza ruzivo nguva nenguva uye nemaoko muITS database.

Zvakare, sysadmin yakataura kuti aisagara achipinda zvishandiso nyowani mudura reITBD nekuti basa rekuvandudza reruzivo dzimwe nguva raisashanda.

Ipapo iwe wakakanganwa kuisa iyo ruzivo ruzivo.

Nekuda kweizvozvo, zviwanikwa zvinogona kuwedzerwa kunetiweki zvisina kunyatso kuzivikanwa uye kusimbiswa nevakuru vekuchengetedza.

Somuenzaniso, yeApril 2018 cyberattack, iyo yaibvumidza varwisi kuba 500 XNUMX dhata pane dzakasiyana NASA mamisheni epasi reMars vakashandisa hutera uhwu apo mubeki akawana iyo JPL network neRaspberry Pi isina mvumo yekubatanidza kune JPL network.

Hackers vakashandisa iyi poindi yekupinda kuti vapinde mukati meiyo JPL network vachirovera mune yakagovaniswa network gedhi.

Ichi chiito chakabvumira varwisi kuwana mukana kumaseva iyo inochengetera ruzivo nezve mamishinari eMars anoitwa neNASA yeJPL rabhoritari, kubva kwavakaburitsa inosvika 500 MB yedata.

Chiitiko chaApril 2018 chiitiko che cyber chakatora mukana weiyo JPL network kushomeka kwechikamu kufamba pakati pemaitiro akasiyana akabatana negedhi, kusanganisira akasiyana JPL mamishinari mashandiro uye DSN.

Semagumo, muna Chivabvu 2018, IT maneja maneja kuJohnson Space Center vanomhanya zvirongwa senge Orion All-Wheel Crew Vehicle uye iyo International Space Station Vakafunga kumboregedza kwenguva pfupi kubva kubhiriji nekuda kwezvikonzero zvekuchengetedza.

Vakuru vanotya kuti cyberattacks dzinogona kuyambuka zambuko richienda kune yavo mamishini masystem, inogona kuwana mukana.

Izvo zvakati, NASA haina kutaura chero mazita ane chekuita nekurwiswa kwaApril 2018. Zvisinei, vamwe vanofunga kuti izvi zvinogona kunge zviine chekuita nezviito zveChinese zvekubira boka rinozivikanwa sezita rekuti Advanced Persistent Threat 10, kana APT10.


Izvo zviri muchinyorwa zvinoomerera pamisimboti yedu ye tsika dzekunyora. Kuti utaure chikanganiso tinya pano.

Iva wekutanga kutaura

Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa.

*

*

  1. Inotarisira data: AB Internet Networks 2008 SL
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako