The US intelligence community is warning the domestic space industry of the growing risk of espionage and satellite attacks from China, Russia, and other adversaries. In coordination with the FBI, the National Counterintelligence and Security Center (NCSC), and the Air Force Office of Special Investigations, the Office of the Director of National Intelligence released a warning about the growing threat of foreign intelligence entities (FIEs) as they continue to launch cyberattacks to gain access to the US space industry.[1]
The US is the main driver of the global space economy's growth, projected to grow from $469 billion to $1 trillion by 2030. Because space is "fundamental to every aspect of our society, including emergency services, energy, financial services, telecommunications, transportation, and food and agriculture," foreign intelligence entities recognize how invaluable "US space-related innovation and assets" are in furthering new technologies, the group said in its joint statement. US space-related companies are at risk of "cyberattacks, strategic investment (including joint ventures and acquisitions), targeting key supply chain nodes and other techniques to gain access to the space industry.
Aside from global competition, there are national and economic security concerns regarding the threats to US space innovation. These include harming US corporate reputations by these foreign entities creating counterfeit products, siphoning intellectual property, collecting sensitive data, and even disrupting US satellite communications. In a presentation at Black Hat USA earlier this month, Johannes Willbold demonstrated how satellites can be hacked, proving that it's not as difficult as one might think.
Along with their joint statement, these counterintelligence agencies have also provided indicators for employees, contractors, and suppliers to understand the signs of foreign intelligence entities targeting them and opportunities for mitigation should organizations face any threats from these actors.
"If you believe your company's intellectual property has been targeted or is at risk of compromise, contact the Private Sector Coordinator at your local FBI Field Office," the NCSC stated in its notice:
https://www.dni.gov/files/NCSC/documents/SafeguardingOurFuture/FINAL
The warning advises companies to log anomalies, establish an insider-threat program to hunt out moles and be wary of requests to visit from foreign entities and of outreaches at conferences and online. It also warns about "unsolicited offers to establish joint ventures with companies tied to foreign governments or state-owned enterprises."
China and Russia historically dismiss allegations that they have carried out hacking and other attempts to infiltrate or disrupt space systems. A spokesperson for China's embassy in Washington said the country has always pursued peaceful exploration of outer space and believes it should be used for the benefit of all humanity. The Russian embassy in Washington did not immediately respond to a request for comment.
The US is particularly keen to support small and midsize satellite companies that may not be aware of the scale and types of risks in play and to help them boost their own mitigation efforts and resilience, according to a US counterintelligence official who requested anonymity to share details.
Large satellite companies with existing links to the government have already been targeted too. Viasat Inc. suffered a 2022 cyberattack ahead of Russia's invasion of Ukraine that saw the company replace more than 45,000 modems across Europe and beyond. Starlink - part of Space Exploration Technologies Corp., known as SpaceX - has stated that it's faced jamming attacks as part of its effort to provide service to Ukraine.
THIS MONTH, the US Space Force unveiled a new targeting unit focused on adversaries in space and at ground stations and the threats they pose to US satellite systems in space.
This article is presented at no charge for educational and informational purposes only.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. For questions, comments, or assistance, please get in touch with the office directly at 1-844-492-7225 or feedback@redskyalliance.com
Weekly Cyber Intelligence Briefings:
Reporting: https://www.redskyalliance.org/
Website: https://www.redskyalliance.com/
LinkedIn: https://www.linkedin.com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://attendee.gotowebinar.com/register/5993554863383553632
[1] https://www.darkreading.com/vulnerabilities-threats/us-space-industry-more-prone-to-foreign-espionage-us-agencies-warn
Comments