Cybersecurity Threats in Space

: [LEO - The European Space Agency]

- Overview

Humanity's fascination with aliens doesn't seem to be waning. This growth is driven by new technologies, business models and government investment in the industry, thereby increasing the number of stakeholders and the application areas they serve cost-effectively.

The use of satellite networks has also become more prominent due to Starlink's involvement in the Ukraine conflict, and it shows no signs of slowing down. As the cost of entry in the space industry decreases and business opportunities abound, expect cybercriminals to innovate as this huge growth area develops.

Among other developments, the associated increase in data volume and complexity has led to increasing concerns about the security and integrity of data transmission and storage between satellites and between ground stations and satellites.

The risk to satellites is highlighted because they are specialized computers and therefore vulnerable to many of the same cybersecurity threats on Earth. Subsequent leaks of satellites and other space assets may increase and become more public.

- Why are Space Systems Vulnerable?

Much of the world’s critical infrastructure is heavily dependent on space, specifically space-based assets, for its daily functioning. Essential systems -- such as communications, air transport, maritime trade, financial services, weather monitoring and defense -- all rely heavily on space infrastructure, including satellites, ground stations and data links at the national, regional and international level.

This dependence poses a serious, and yet frequently underrecognized, security dilemma -- especially cyber threats -- for critical infrastructure providers and policymakers alike.

Like any other increasingly digitized critical infrastructure, satellites and other space-based assets are vulnerable to cyberattacks. Many space systems are old, created before cybersecurity became a top policy priority.

They have vulnerabilities like hardcoded credentials -- used by ships, planes and the military — making access by sophisticated actors fairly easy.

These cyber vulnerabilities pose serious risks not just for space-based assets themselves but also for ground-based critical infrastructure. If not contained, these threats could interfere with global economic development and, by extension, international security. What's more, these concerns are no longer merely hypothetical.

Within the past decade, more countries and private actors have acquired and employed counter-space capabilities in novel applications, which now pose a greater existential threat to critical space assets.

- What are the Vulnerabilities?

Satellites are vulnerable to cyberattacks because they are platforms with embedded systems and interfaces, including radio communications, telemetry tracking control systems, and ground segment connections. These are all essentially enterprise networks, but that also makes them avenues of opportunity for cybercriminals.

Vulnerabilities to space systems and infrastructure vary across a range of potential attack surfaces. As the Aerospace Corporation explains in a recent paper, there are four main segments of space infrastructure that need to be hardened against cyber attack: Spacecraft could be vulnerable to command intrusions (giving bad instructions to destroy or manipulate basic controls), payload control and denial of service (sending too much traffic to overload systems).

Malware could be used to infect systems on the ground (like satellite control centers) and for users, and links between the two and spacecraft could be spoofed (disguising communication from an untrusted source as a trusted one) or suffer from replay (interrupting or delaying communication by malicious actors).