The nation’s space agency claims its network was breached earlier this year.
NASA sent a memo to employees Tuesday saying that an unauthorized user accessed a server containing Social Security numbers and personally identifiable information on current and former employees.
The agency began investigating the incident Oct. 23, claiming it “took immediate action to secure the servers.” NASA does not believe any mission-critical systems were affected by the breach.
“NASA and its federal cybersecurity partners are continuing to examine the servers to determine the scope of the potential data exfiltration and identify potentially affected individuals,” the agency said. “This process will take time. The ongoing investigation is a top agency priority, with senior leadership actively involved.”
The incident could compromise the information of anyone who joined the agency, separated from the agency, and/or were transferred between NASA centers between July 2006 and October 2018, the memo says.
Read more about the breach on CyberScoop.