The NSA had codename 'red disk' leaked while it was on an amazon server.

Illustration via Pat Corbett

NSA data reportedly left unsecured on Amazon server

It was linked to a program called 'Red Disk.'


Andrew Wyrich

Layer 8

Posted on Nov 28, 2017   Updated on May 22, 2021, 9:43 am CDT

More than 100 gigabytes of data belonging to a division of the National Security Agency (NSA) were left online on an unsecured Amazon Web Services server, according to a new report.

ZDNet reports that the virtual disk image was left on the server, without a password, and available for anyone to download.

The unsecured data was discovered by cybersecurity firm UpGuard in October, and the server was shut down, according to the news outlet.

The virtual disk image showed part of a server that was linked to a cloud-based intelligence project called Red Disk. The program was designed to allow troops all over the world to update and exchange information in real time, according to the New York Post. The data left on the Amazon server showed a “snapshot” of a hard drive dating back to May 2013, according to the news outlet.

The program would share drone footage, classified reports, satellite imagery, and intercepts, ZDNet reports, and would be accessible by soldiers with laptops or tablets while on the ground. Red Disk was never fully deployed in the battlefield and cost nearly $1 billion.

The data on the unprotected server contained private keys to access servers across the intelligence community.

Last week, the New York Times reported that the NSA’s cyberweapons were being used against them by a group called the Shadow Brokers. An investigation was taking place to see if the NSA was hacked or someone leaked the data.

You can read all of ZDNet’s report here.

Share this article
*First Published: Nov 28, 2017, 12:49 pm CST