European Space Agency Confirms Breach After Hacker Offers to Sell Data

The European Space Agency (ESA) has confirmed that some of its systems have been breached after a hacker offered to sell data allegedly stolen from the organization.

The space agency is conducting a forensic investigation and is working on securing compromised devices.

To date, the probe has shown that servers located outside the ESA corporate network have been compromised.

“Our analysis so far indicates that only a very small number of external servers may have been impacted. These servers support unclassified collaborative engineering activities within the scientific community,” the agency said in a statement posted on X.

“All relevant stakeholders have been informed, and we will provide further updates as soon as additional information becomes available,” it added.

The ESA’s response comes after a hacker with the online moniker ‘888’ claimed on the BreachForums cybercrime website that they hacked into the agency’s systems on December 18.

The hacker offered to sell 200 GB of data allegedly stolen from ESA systems, including files from private Bitbucket repositories.

The threat actor claims to have obtained source code, API and access tokens, configuration files, credentials, and confidential documents.

Several screenshots have been made public by the attacker to demonstrate the claims.

This article was published by Security Week. Please check their website for the original content.