NASA’s Astrobiology website had a vulnerability that left it open to an open redirect flaw for an extended period, potentially enabling malicious actors to redirect visitors to harmful third-party landing pages. The cybersecurity researchers from the Cybernews team revealed this flaw, noting that there is no evidence of it being exploited in the wild yet, but the possibility remains.
According to the Cybernews team’s recent report, they discovered the flaw in NASA’s Astrobiology website earlier this week. The vulnerability allows threat actors to redirect visitors to alternative destinations, and it is suspected that hackers may have created a deceptive website that closely resembles NASA’s legitimate site.
