cyber Breach

European Space Agency - ESA

Oct 26, 2023 1 min read
European Space Agency - ESA

The Personal Information of 1000 subscribers and officials has been exposed after the European Space Agency's subdomains were breached by the organization Anonymous.

To get access to the subdomains' backend and extract data from the database, the hackers took advantage of a blind SQL vulnerability.

Data from subscribers, officials' personal information, and the website's database were among the three files into which Anonymous dumped the stolen material.

According to the findings, the compromised material contained details about public servants who might be the subject of espionage plots by criminal organizations or nation-state actors.

Source: https://securityaffairs.com/42795/cyber-crime/anonymous-hack-european-space-agency.html

TPRM report: https://scoringcyber.rankiteo.com/company/european-space-agency

"id": "eur1221261023",
"linkid": "european-space-agency",
"type": "Breach",
"date": "12/2015",
"severity": "100",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"
{'affected_entities': [{'customers_affected': 1000,
                        'industry': 'Space and Aerospace',
                        'location': 'Europe',
                        'name': 'European Space Agency',
                        'type': 'Government Agency'}],
 'attack_vector': 'Blind SQL Injection',
 'data_breach': {'data_exfiltration': True,
                 'number_of_records_exposed': 1000,
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'High',
                 'type_of_data_compromised': ["Subscribers' Personal "
                                              'Information',
                                              "Officials' Personal Information",
                                              'Website Database']},
 'description': 'The Personal Information of 1000 subscribers and officials '
                "has been exposed after the European Space Agency's subdomains "
                'were breached by the organization Anonymous.',
 'impact': {'data_compromised': ["Subscribers' Personal Information",
                                 "Officials' Personal Information",
                                 'Website Database']},
 'initial_access_broker': {'entry_point': 'Blind SQL Vulnerability',
                           'high_value_targets': 'Public Servants'},
 'post_incident_analysis': {'root_causes': 'Blind SQL Vulnerability'},
 'threat_actor': 'Anonymous',
 'title': 'European Space Agency Data Breach',
 'type': 'Data Breach',
 'vulnerability_exploited': 'Blind SQL Vulnerability'}
Published by
Roshni Ray
Roshni Ray
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.