Cyberattack on Satellite Infrastructure Highlights Hybrid Threats

On February 24, 2022, a cyberattack targeted a commercial satellite communications provider, disrupting broadband access for tens of thousands of modems across Europe. This incident, attributed to Russian military intelligence, affected emergency services and military operations, blurring the lines between commercial and military satellite functions. The attack demonstrated that adversaries no longer distinguish between commercial and military assets, as critical infrastructure is increasingly provided by commercial operators. Currently, there are 14,904 satellites in orbit, with over 70% of NATO's satellite communications relying on commercial services. Five advanced persistent threat groups are actively targeting satellite infrastructure, indicating a significant shift in the operational landscape. The existing governance framework for satellite security is outdated, failing to address the complexities of hybrid threats in the current environment.

Key Points: • A cyberattack on a commercial satellite provider disrupted services for tens of thousands in Europe. • The attack, attributed to Russian military intelligence, blurred lines between commercial and military assets. • Over 70% of NATO's satellite communications rely on commercial operators, increasing vulnerability.