# Satellite System Attacks
Definition
Satellite system attacks target the space-based and ground-based components of satellite communication, navigation, and Earth observation systems. These attacks can disrupt GPS/GNSS navigation, intercept satellite communications, jam or spoof satellite signals, compromise ground station infrastructure, and interfere with satellite-based internet services. As society's dependence on satellite infrastructure grows (financial trading timestamps, aviation navigation, military communications, broadband internet, precision agriculture, autonomous vehicles), the attack surface and consequences of satellite compromise have expanded dramatically.
How It Works
Satellite systems present multiple attack vectors across three segments:
Space Segment (Satellites):
- Jamming: Overwhelming satellite signals with noise. GPS jamming devices are inexpensive and readily available. Effective range varies from meters (personal privacy devices) to hundreds of kilometers (military-grade jammers).
- Spoofing: Transmitting counterfeit satellite signals that mimic legitimate ones. GPS spoofing can redirect navigation systems, falsify location data, and manipulate timing signals that financial markets depend on.
- Orbital Attacks: Anti-satellite (ASAT) weapons (kinetic kill vehicles, directed energy) can physically destroy or disable satellites. Demonstrated by China (2007), India (2019), and Russia (2021).
- Cyberattacks on Satellites: Compromising satellite onboard computers through uplink commands, firmware vulnerabilities, or supply chain compromise of satellite components.
Ground Segment (Control Stations):
- Ground Station Compromise: Hacking ground control stations to send unauthorized commands to satellites (redirect, disable, change configuration).
- Telemetry Interception: Capturing and analyzing telemetry data between satellites and ground stations.
- Supply Chain Attacks: Compromising the software, firmware, or hardware supply chain of satellite ground infrastructure.
User Segment (Terminals and Receivers):
- Terminal Attacks: Exploiting vulnerabilities in satellite terminals (VSAT, Starlink terminals, GPS receivers). The Viasat KA-SAT attack in February 2022 demonstrated this by bricking tens of thousands of terminals through a compromised ground management system.
- Signal Interception: Passive interception of unencrypted satellite downlinks.
- Protocol Exploitation: Attacking vulnerabilities in satellite communication protocols (DVB-S2, CCSDS) that often lack modern security features.
Real Attack History:
- Viasat (2022): Russia-linked actors attacked KA-SAT satellite network at the start of the Ukraine invasion, bricking modems across Europe and disrupting Ukrainian military communications.
- GPS Spoofing: Widespread GPS spoofing detected in conflict zones (Middle East, Eastern Europe) affecting commercial aviation navigation.
- Turla APT: Russian intelligence group hijacked satellite internet connections for covert command and control.
Why It Matters
Satellite infrastructure is a critical dependency for modern society that most organizations do not recognize or manage as a risk:
- Timing: GPS provides the timing reference for financial markets, power grid synchronization, telecommunications, and distributed computing. GPS timing disruption could cause cascading failures across these sectors.
- Navigation: Aviation, maritime shipping, autonomous vehicles, and logistics depend on satellite navigation. Spoofing attacks can misdirect aircraft, ships, and autonomous vehicles.
- Communications: Military operations, emergency services, remote area connectivity, and maritime communications rely on satellite links.
- Internet: LEO satellite constellations (Starlink, OneWeb, Kuiper) are becoming critical internet infrastructure, especially in underserved areas.
- Earth Observation: Weather forecasting, climate monitoring, disaster response, and intelligence gathering depend on satellite imagery.
The Viasat attack demonstrated that satellite systems are not theoretical targets. They are active targets in geopolitical conflict. The attack affected not just Ukraine's military but also wind turbines in Germany and emergency services across Europe, illustrating cascading effects.
Real-World Applications
- Aviation Security: Airlines and air traffic control systems must address GPS spoofing risks that could provide false position data to aircraft.
- Maritime Security: Shipping companies implement multi-source navigation (GPS + inertial + visual) to detect and mitigate spoofing attacks.
- Financial Services: Trading firms and exchanges implement GPS-independent timing sources (atomic clocks, eLoran) as backup for market timing.
- Military Operations: Armed forces implement GPS-denied navigation capabilities and anti-jamming/anti-spoofing technologies.
- Critical Infrastructure: Power grid operators, telecom providers, and data centers implement satellite-independent timing backup.
CDA Perspective
Satellite system attacks map to CDA's Vulnerability & Surface Defense (VSD) domain under the Continuous Surface Reduction (CSR) methodology. Most organizations do not recognize their satellite dependencies, let alone manage them as a risk.
CDA's approach:
- M-VSD-R03 identifies satellite dependencies across the organization (GPS timing, satellite communications, satellite internet, location services)
- M-VSD-B03 architects redundancy for critical satellite dependencies (alternative timing sources, multi-source navigation, backup communications)
- M-VSD-H02 monitors for GPS anomalies and satellite communication disruptions
- M-TID-R01 tracks nation-state satellite warfare capabilities and threat intelligence
CDA's principle: any single-source dependency is a vulnerability. Organizations that depend on GPS for timing, satellite for communications, or GNSS for navigation must have validated backup systems that activate automatically upon disruption.
Key Takeaways
- Satellite systems are actively targeted in geopolitical conflicts, as demonstrated by the Viasat attack
- GPS jamming and spoofing devices are inexpensive and widely available
- GPS timing disruption can cascade across financial markets, power grids, and telecommunications
- Satellite dependencies are often invisible, embedded in systems that organizations do not recognize
- Three attack surfaces: space segment (satellites), ground segment (control stations), user segment (terminals)
- Redundancy for satellite-dependent functions (timing, navigation, communications) is essential