The European Space Agency (ESA) has confirmed that some of its systems have been breached after a hacker offered to sell data allegedly stolen from the organization.
The space agency is conducting a forensic investigation and is working on securing compromised devices.
To date, the probe has shown that servers located outside the ESA corporate network have been compromised.
“Our analysis so far indicates that only a very small number of external servers may have been impacted. These servers support unclassified collaborative engineering activities within the scientific community,” the agency said in a statement posted on X.
“All relevant stakeholders have been informed, and we will provide further updates as soon as additional information becomes available,” it added.
The ESA’s response comes after a hacker with the online moniker ‘888’ claimed on the BreachForums cybercrime website that they hacked into the agency’s systems on December 18.
The hacker offered to sell 200 GB of data allegedly stolen from ESA systems, including files from private Bitbucket repositories.
The threat actor claims to have obtained source code, API and access tokens, configuration files, credentials, and confidential documents.
Several screenshots have been made public by the attacker to demonstrate the claims.
Related: Polish Space Agency Hit by Cyberattack
Related: Hijacked Satellites and Orbiting Space Weapons: In the 21st Century, Space Is the New Battlefield
Related: Japan’s Space Agency Was Hit by Multiple Cyberattacks, but Officials Say No Sensitive Data Was Taken
