In December 2023, one of the largest telecommunication firms in Ukraine was taken offline by a cyberattack, leaving millions of Ukrainian citizens without mobile phone or internet service for an extended duration. This attack marked a significant turning point in the cyber warfare of the Russian-Ukraine war and highlights a growing trend of cyber threat actors going after high-profile targets in the telecommunications sector. Since the Kyivstar attack in late 2023, there have been multiple cyberattacks targeting international telecommunications organizations contributing to this growing trend.

Examples of this activity include the Spanish telecommunications firm Orange, that was targeted by an info stealing malware, a cyberattack on the Malaysian telco Celcom, where the threat actor claimed to be selling the company’s source code, and most recently, a UAE-based satellite services provider, who allegedly has been the target of the notorious Anonymous Sudan hacking group. These recent attacks on telecommunications companies have had a range of effects, from minor financial impacts to significant outages or theft of proprietary information.

Regardless of the attack type or threat group responsible, it appears that many cybercriminals are finding value in compromising the broader communications sector. This could be due to the general impact on civilian and military operations, as reliable communication networks are a critical component of national security. This trend serves to only expand the threat landscape for the commercial space sector, as firms and users alike will shift to become more reliant on space to maintain or supplement communications, as is the case with Ukraine’s continued use of Starlink services. This expansion of reliance on satellites represents an increase in attack surface and may even position satellite services in the crosshairs of nation-states whose goal is to disrupt communications and other critical functions.

Another important correlation to consider is the role of space-based assets in supporting telecommunications infrastructure. Satellites play a crucial role in extending the reach of terrestrial telecommunications networks, especially in remote or underserved areas. However, this reliance on satellite-based communications also introduces new vulnerabilities that cyber threat actors may exploit. As the demand for satellite-based services continues to grow, ensuring the security and resilience of these systems against cyber threats becomes paramount for both the telecommunications and space industries.

Furthermore, the commercial space domain is increasingly reliant on interconnected networks and data systems for various operations, including satellite launches, space exploration missions and satellite-based services. These networks are susceptible to cyberattacks that can compromise sensitive data, disrupt operations or even sabotage space missions. The growing trend of cyberattacks on telecommunications firms underscores the need for robust cybersecurity measures across the entire space ecosystem.