19 April 2016

NASA leaks names of employees with Secret and TOP Secret clearance?

NASA leaks names of employees with Secret and TOP Secret clearance?

It appears, NASA has a huge public file server. According to Google, there are almost 25,000 indexed documents. These documents are mainly examples of forms, applications, contracts, etc. However, several documents attracted our attention due to their names, e.g. "DD Form 254", which is used to request access to classified information and should be approved by DoD (Department of Defense).

We briefly went through these documents, and here are our findings:

Google says there are 142 documents in .doc format labeled "DD Form 254". Some of them are actual applications, prepared for signing contracts with subcontractors. These documents contain names, phone numbers, (some of them even signatures), contact information, addresses of facilities, job titles of employees, who request security clearance for subcontractors. Certain contracts require TOP SECRET clearance:

And some personal information of employees:

Due to predictable filenames it is possible to view documents, not indexed by Google, just by changing the last digit in the filename. The above link https://prod.nais.nasa.gov/eps/eps_data/132356-SOL-001-008.doc can be modified to view other details of this particular contract:

The filenames can also be brute-forced. So, even if the file is not indexed by Google, it still can be accessible on the server.


Back to the list

Latest Posts

New Mirai variant utilises 13 different exploits to attack more routers and video recording devices

New Mirai variant utilises 13 different exploits to attack more routers and video recording devices

This marks the first time when all of them have been used in a single campaign together.
24 May 2019
Researchers shed some light on commands used by Zebrocy toolkit

Researchers shed some light on commands used by Zebrocy toolkit

Malware operators run commands manually to collect a vast amount of data from infected systems.
23 May 2019
Malware sample uploaded to VirusTotal linked to ongoing APT28 attack

Malware sample uploaded to VirusTotal linked to ongoing APT28 attack

The attacks have been linked to a cyber espionage group APT28.
22 May 2019
Featured vulnerabilities
Privilege escalation in libvirt
Low Patched | 24 May, 2019
Multiple vulnerabilities in OpenEMR
Medium Patched | 23 May, 2019
CSRF in WP Open Graph plugin for WordPress
Medium Patched | 23 May, 2019
Multiple vulnerabilities in cURL
High Patched | 23 May, 2019