# NASA and the FAA were also breached by the SolarWinds hackers **[bleepingcomputer.com/news/security/nasa-and-the-faa-were-also-breached-by-the-solarwinds-hackers/](https://www.bleepingcomputer.com/news/security/nasa-and-the-faa-were-also-breached-by-the-solarwinds-hackers/)** Sergiu Gatlan By [Sergiu Gatlan](https://www.bleepingcomputer.com/author/sergiu-gatlan/) February 24, 2021 08:32 AM 0 NASA and the US Federal Aviation Administration (FAA) have also been compromised by the nation-state hackers behind the SolarWinds supply-chain attack, according to a [Washington Post report.](https://www.washingtonpost.com/national-security/biden-russia-sanctions-solarwinds-hacks/2021/02/23/b77039d6-71fa-11eb-85fa-e0ccb3660358_story.html) The two attacks are part of a broader espionage effort targeting and compromising multiple US government agencies over the last year. NASA (short for National Aeronautics and Space Administration) is an independent U.S. federal agency coordinating its civilian space program. The FAA is the US civil aviation and international waters regulator. ## NASA and FAA don't deny breach ----- While the US government has not publicly disclosed that NASA and the FAA were breached, the agencies' identities were confirmed by the Post with US officials after Anne Neuberger, White House’s deputy national security adviser, said that nine federal agencies were breached in the SolarWinds hack campaign. A Transportation Department spokesperson said the agency is investigating the situation. A NASA spokeswoman added that the federal agency is working with CISA on "mitigation efforts to secure NASA’s data and network." These two federal agencies are the last two to be identified after the hacks of seven others have already been acknowledged since the espionage campaign was uncovered. The threat actor behind these attacks is currently tracked as StellarParticle (CrowdStrike), UNC2452 (FireEye), SolarStorm (Palo Alto Unit 42), and Dark Halo (Volexity). While its identity is still anonymous, the FBI, CISA, ODNI, and the NSA issued a joint statement saying that it is [likely a Russian-backed hacking group.](https://www.bleepingcomputer.com/news/security/us-govt-says-russian-state-hackers-likely-behind-solarwinds-hack/) Microsoft shared a [detailed timeline of the attacks& showing that the state hackers trojanized](https://www.bleepingcomputer.com/news/security/microsoft-shares-how-solarwinds-hackers-evaded-detection/) the company's Orion IT monitoring platform in February 2020 and later deployed a backdoor using the software's update mechanism on compromised networks in late-March. ## Compromised federal agencies The list of the seven other US government agencies confirmed as having been hit in the SolarWinds supply-chain attack includes: [US& Department of the Treasury](https://www.reuters.com/article/BigStory12/idUSKBN28N0PG) [US& National Telecommunications and Information Administration (NTIA)](https://www.washingtonpost.com/national-security/russian-government-spies-are-behind-a-broad-hacking-campaign-that-has-breached-us-agencies-and-a-top-cyber-firm/2020/12/13/d5a53b88-3d7d-11eb-9453-fc36ba051781_story.html) [US& Department of State](https://www.washingtonpost.com/national-security/dhs-is-third-federal-agency-hacked-in-major-russian-cyberespionage-campaign/2020/12/14/41f8fc98-3e3c-11eb-8bc0-ae155bee4aff_story.html) [The National Institutes of Health (NIH) (part of the US Department of Health)](https://www.washingtonpost.com/national-security/dhs-is-third-federal-agency-hacked-in-major-russian-cyberespionage-campaign/2020/12/14/41f8fc98-3e3c-11eb-8bc0-ae155bee4aff_story.html) [US& Department of Homeland Security (DHS)](https://www.washingtonpost.com/national-security/dhs-is-third-federal-agency-hacked-in-major-russian-cyberespionage-campaign/2020/12/14/41f8fc98-3e3c-11eb-8bc0-ae155bee4aff_story.html) [US& Department of Energy (DOE)](https://www.bleepingcomputer.com/news/security/solarwinds-hackers-breach-us-nuclear-weapons-agency/) [US& National Nuclear Security Administration (NNSA)](https://www.bleepingcomputer.com/news/security/solarwinds-hackers-breach-us-nuclear-weapons-agency/) In January, the Administrative Office of the US Courts disclosed an ongoing investigation following a potential compromise of the federal courts' case management and electronic case files system. Last week, Microsoft also revealed that the SolarWinds hackers accessed and downloaded source code for a limited number of Azure, Intune, and Exchange components. According to the Post's report, the Biden administration is also& planning to sanction Russia for the SolarWinds hacks and poisoning& opposition leader Alexei Navalny. ----- ### Related Articles: [FBI, CISA, and NSA warn of hackers increasingly targeting MSPs](https://www.bleepingcomputer.com/news/security/fbi-cisa-and-nsa-warn-of-hackers-increasingly-targeting-msps/) [FTC fines Twitter $150M for using 2FA info for targeted advertising](https://www.bleepingcomputer.com/news/technology/ftc-fines-twitter-150m-for-using-2fa-info-for-targeted-advertising/) [Hacker says hijacking libraries, stealing AWS keys was ethical research](https://www.bleepingcomputer.com/news/security/hacker-says-hijacking-libraries-stealing-aws-keys-was-ethical-research/) [Popular Python and PHP libraries hijacked to steal AWS keys](https://www.bleepingcomputer.com/news/security/popular-python-and-php-libraries-hijacked-to-steal-aws-keys/) [US Senate: Govt’s ransomware fight hindered by limited reporting](https://www.bleepingcomputer.com/news/security/us-senate-govt-s-ransomware-fight-hindered-by-limited-reporting/) -----