{"id":236056,"date":"2026-06-23T16:50:00","date_gmt":"2026-06-23T20:50:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/23\/space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say\/"},"modified":"2026-06-23T17:20:09","modified_gmt":"2026-06-23T21:20:09","slug":"space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/06\/23\/space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say\/","title":{"rendered":"Space Sector Faces 400% Surge in Cyberattacks Amid Iran War, Experts Say"},"content":{"rendered":"<p><a href=\"https:\/\/www.satellitetoday.com\/cybersecurity\/2026\/06\/23\/space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say\/\">Space Sector Faces 400% Surge in Cyberattacks Amid Iran War, Experts Say<\/a><\/p>\n<p><a href=\"https:\/\/www.satellitetoday.com\/cybersecurity\/2026\/06\/23\/space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say\/\">https:\/\/www.satellitetoday.com\/cybersecurity\/2026\/06\/23\/space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say\/<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-06-23 16:50:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.satellitetoday.com\">www.satellitetoday.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points.<br \/>\n                    The space sector is seeing a dramatic rise in the tempo and sophistication of cyberattacks following U.S. and Israel-led military operations in Iran, according to cybersecurity experts.<br \/>\n\u201cFrom a high-level activity perspective, we\u2019re operating at a tempo about 400% above where we were before the war,\u201d Norm Laudermilch, CISO of Vantor, said during a June 23 CyberSat webinar on Iranian threats to space infrastructure.<br \/>\nThe spike in security events is similar to other geopolitical conflicts, like the Russian invasion of Ukraine, according to Laudermilch. What is different, he said, is the convergence of hacktivist groups and nation-state actors. Unlike previous conflicts that saw a rise in hacktivists and cybercriminals conducting low-level attacks, experts are seeing a sustained targeting of the defense, industrial base and adjacent sectors, including aerospace and space.<br \/>\n\u201cEach time you have a geopolitical crisis, a war, a conflict or a massive political decision, you have attacks against the space sector,\u201d said Cl\u00e9mence Poirier, senior cyberdefense researcher at the Center for Security Studies (CSS) at ETH Zurich in Switzerland.<br \/>\nIn a recent article, Poirier documented a shift in Iranian cyber operations from the 12-day Israel-Iran war in 2025 to Operation Epic Fury in February 2026. She identified a greater presence of sophisticated state cyber actors and geographically targeted attacks against Gulf nations, which were simultaneously hit by kinetic strikes.<br \/>\nDuring the first weeks of the conflict, Iranian state-sponsored groups launched a series of attacks. Mobir, with ties to the Islamic Revolutionary Guard Corps (IRGC), took credit for cyberattacks against Space42, Bayanarta, Thuraya, Yahsat, Arabsat and the UAE Space Agency. Handala, a hacktivist group with ties to Iran\u2019s Ministry of Intelligence and Security, reportedly conducted personnel and doxxing attacks against Lockheed Martin employees in Israel. Lockheed was also targeted by the IRGC-linked APT33, which claimed to have stolen 375 terabytes of data from the company.<br \/>\nAI a \u2018Double-Edged Sword\u2019<br \/>\nThe volume and sophistication of the attacks on the space sector is being attributed to the adoption of artificial intelligence.<br \/>\n\u201cAI has lowered the barrier to entry for the threat actors while increasing the scale and complexity of the attacks,\u201d said Laudermilch. This includes AI-enabled malware development, social engineering campaigns and powerful frontier AI models, like Anthropic\u2019s Mythos or OpenAI\u2019s GPT-5.5-Cyber, which have allowed users to rapidly identify and deploy exploits.<br \/>\nA three-page statement released Monday by leaders of the Five Eyes cybersecurity agencies, comprising the United States, Britain, Canada, Australia, and New Zealand, warned that frontier AI models are transforming offensive cyber capabilities on a timeframe of months, not years. The statement encouraged leaders to prioritize cyber resilience and foundational cybersecurity practices and controls.<br \/>\nPoirier described AI as a \u201cdouble-edged sword,\u201d given the speed and proliferation of offensive and defensive capabilities. \u201cAI can be very good at finding vulnerabilities so that you can patch them,\u201d she said. \u201cBut at the same time, you\u2019re not going to be able to patch everything on the satellite. \u2026 So, you have to focus on patching the most critical and most likely to be exploited vulnerabilities.\u201d<br \/>\nEven if companies use AI to discover vulnerabilities, most do not have the resources or time to test solutions, deploy them, ensure compatibility, and secure against downtime. \u00a0\u201cWe have to kind of give up on the fact that patching and prevention is the top priority because the current toolset in use by the attackers has taken that away from us,\u201d said Laudermilch. The focus now is shifting to containment and detection, rather than prevention, he said, because new AI models \u201cwill generate zero-days a dime a dozen.\u201d<br \/>\nNetworks Remain Vulnerable<br \/>\nAI has changed the tempo of the threat, but the attack vectors remain largely unchanged. Within the satellite network, the ground segment and IT environments remain the most vulnerable. Identity and access management, cloud infrastructure, as well as third-party supply chains are all sources of potential compromise that experts say should be defended through supply chain visibility, Zero-Trust architectures, role-based access controls, and organization-wide security awareness training.<br \/>\nThe spacecraft itself has remained a more difficult target. However, new government initiatives are highlighting the risks of on-orbit cyberattacks. As part of its efforts to protect space-dependent critical infrastructure, the U.S. Department of Homeland Security Science and Technology Directorate (DHS S&#038;T) recently released research to support onboard threat detection and countermeasures.<br \/>\nPoirier noted that there are almost never reports of incidents where the space segment is the entry point of an attack, though that may change with onboard detection.<br \/>\n\u201cIt\u2019s a bit of a chicken and egg problem, where do we not see attacks onboard because there are none,\u201d she asked. \u201cOr is it just that there are attacks against the space segment but we don\u2019t see them because we don\u2019t have data?\u201d<br \/>\nIt is much easier to compromise a spacecraft through human users or system vulnerabilities, said Laudermilch. \u201cIf your intent is to disable an automobile, would you spend all the time to hack the computer that controls everything or would you just put a knife in the tire?\u201d<br \/>\nThe webinar on evolving satellite cybersecurity risks was part of an ongoing discussion leading up to CyberSat, taking place November 3-5 in Reston, Virginia\u00a0<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Space Sector Faces 400% Surge in Cyberattacks Amid Iran War, Experts Say https:\/\/www.satellitetoday.com\/cybersecurity\/2026\/06\/23\/space-sector-faces-400-surge-in-cyberattacks-amid-iran-war-experts-say\/ Publish Date:&#8230;<\/p>\n","protected":false},"author":1,"featured_media":236057,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/www.satellitetoday.com\/wp-content\/uploads\/2026\/04\/6g1H2loMQ2Cmd3WQfvTK_VS_110120_DGTL_Cyber.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24,32],"class_list":["post-236056","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity","tag-malware"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/236056"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=236056"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/236056\/revisions"}],"predecessor-version":[{"id":236059,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/236056\/revisions\/236059"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/236057"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=236056"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=236056"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=236056"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}