Connect with us

Hi, what are you looking for?



US Gov Warns of Foreign Intelligence Cyberattacks Against US Space Industry

The FBI, NCSC, and AFOSI warn US space industry organizations of foreign intelligence targeting and exploitation, including cyberattacks.

The Air Force Office of Special Investigations (AFOSI), the Federal Bureau of Investigation (FBI), and the National Counterintelligence and Security Center (NCSC) have issued an alert about the increased targeting of the US space industry by foreign intelligence entities (FIEs).

According to the advisory (PDF), the US is the main driver behind the projected growth of the global space economy, making the US space industry an attractive target for FIEs.

“[FIEs] see US space-related innovation and assets as potential threats as well as valuable opportunities to acquire vital technologies and expertise,” the three US government agencies say.

To gain access to the US space industry, these entities use tactics ranging from cyberattacks and supply chain compromise to strategic investments, the FBI, NCSC, and AFOSI say.

This targeting and exploitation of the US space industry, the agencies say, has an impact not only on national security, but also on economic security and on the global competition in the sector.

Threat actors, the agencies say, may leak intellectual property and steal innovations, collect information on and disrupt US satellite communications and related capabilities, impact the US’s ability to provide critical services, and find and exploit vulnerabilities in US commercial space infrastructure.

The targeting may negatively affect the revenue of the US commercial space sector and global market, may lead to exploitation of critical resources, and impact international laws, norms, and regulations to disadvantage space firms.

Advertisement. Scroll to continue reading.

Signs of potential targeting by FIEs include usual cyber activity aimed at US space companies, requests to visit from unknown parties, specific questions about proprietary information, unsolicited offers for joint ventures, acquisition and investment efforts, and attempts to recruit an organization’s employees.

US space organizations are advised to log abnormal incidents, establish an insider threat program, invest in improving the enterprise-wide security posture, secure their most valuable assets, audit suppliers and their security practices, conduct due diligence on investors, and build resilience and redundancy into their operations.

Organizations that believe they are at risk or might have been targeted are encouraged to contact law enforcement.

Related: Israel, US to Invest $4 Million in Critical Infrastructure Security Projects

Related: CISA Releases Cyber Defense Plan to Reduce RMM Software Risks

Related: CISA Unveils Cybersecurity Strategic Plan for Next 3 Years

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join security experts as they discuss ZTNA’s untapped potential to both reduce cyber risk and empower the business.


Join Microsoft and Finite State for a webinar that will introduce a new strategy for securing the software supply chain.


Expert Insights

Related Content

Cloud Security

Cloud security researcher warns that stolen Microsoft signing key was more powerful and not limited to and Exchange Online.


Private equity giant plans to buy Forcepoint’s Global Governments and Critical Infrastructure (G2CI) business unit for $2.5 billion.


US National Cybersecurity Strategy pushes regulation, aggressive 'hack-back' operations.


The proposed UK Online Safety Bill is the enactment of two long held government desires: the removal of harmful internet content, and visibility into...

Cloud Security

Redmond is accused of “negligent cybersecurity practices” that enabled a successful Chinese hack of the United States government.


Companies have announced securing billions of dollars in cybersecurity-related contracts with the United States government in 2022.


CISA has described and published a set of principles for the development of security-by-design and security-by-default cybersecurity products.


TSA instructs airport and aircraft operators to improve their cybersecurity resilience and prevent infrastructure disruption and degradation.