Russia Hacked Ukrainian Satellite Communications

Uploaded on 2022-04-11 in TECHNOLOGY--Hackers, INTELLIGENCE-Hot Spots-Russia, FREE TO VIEW, BUSINESS-Services-IT & Telecoms

Russia is believed to have hacked the US satellite communications provider Viasat on the same day as its Ukraine invasion. More than 22,000 miles above Earth, the KA-SAT is in geostationary orbit at 7,000 miles per hour. The the satellite beams high-speed Internet to users across Europe where  it has helped homeowners, businesses, and militaries get online since 2011. 

As Russian troops moved into Ukraine on  February 24, satellite Internet connections were disrupted. Numerous users were affected included some in the Ukrainian military, and the attack dramatically demonstrated the vulnerability of commercial satellite communications on which the US military increasingly relies. 

It is now believed that the Russian military spy service, the GRU, was behind a hack that affected the Ukrainian military’s communications at the start of Russia's invasion into the country. The hack affected the KA-SAT satellite broadband network, owned by Viasat, an American satellite communications company. On February 24th, the day the Russian invasion of Ukraine began, the KA-SAT network was hit by outages that affected Ukraine and surrounding regions in Europe. 

Sources say that the GRU has led in operations against Ukraine, although there have not been major cyber attacks against the West from from this source, so far.  Overall, Ukraine has proved more resilient to cyber attacks than many had expected. 

Intelligence agencies  say the attack fits closely with Russian military doctrine, in which cyber attacks are used to support specific military objectives, in this case trying to sow confusion by disrupting Ukrainian command and control. It appears to be the most significant cyber attack linked to the conflict so far, affecting military, as well as government communications. 

In the US, the Cybersecurity & Infrastructure Security Agency (CISA) have warned that they are "aware of possible threats to US and international satellite communication networks", and have urged providers to improve their security because of the continuing potential risks. 

One concern had been that Russia could retaliate for Western sanctions by launching cyber attacks against the West, perhaps unleashing criminal gangs who use ransomware to lock businesses and organisations out of their systems. 

The White House has warned that it has seen intelligence of possible activity, however, it is not clear yet whether this is above the normal level of Russian cyber activity that is happening all the time or whether it is an indication that Russia is preparing for something more serious.

Satellite Internet connections are often used in areas with low cable coverage and are used by everyday citizens, as well as official organisations.  The set-up is different from your typical home or office Wi-Fi network, which mostly rely on wired broadband connections. 

AirForce Magazine:    BBC:    The Verge:     Washington Post:      The Hill:    Wired:      Samachar Central:

You Might Also Read: 

SpaceX Plan For 4k Satellite Broadband Network:

 

« Mobile Cyber Attacks: The Different Facets Of Smartphone Malware
Google’s Emergency Update For Chrome »

CyberSecurity Jobsite
Perimeter 81
Cyrin

Real Attacks. Real Tools. Real Scenarios.
Schedule a demo

Go Cyber

Training that transforms behaviours

Sign Up: Cyber Security Intelligence Newsletter

Directory of Suppliers

XYPRO Technology

XYPRO Technology

XYPRO is the market leader in HPE Non-Stop Security, Risk Management and Compliance.

NordLayer

NordLayer

NordLayer is an adaptive network access security solution for modern businesses — from the world’s most trusted cybersecurity brand, Nord Security. 

MIRACL

MIRACL

MIRACL provides the world’s only single step Multi-Factor Authentication (MFA) which can replace passwords on 100% of mobiles, desktops or even Smart TVs.

ManageEngine

ManageEngine

As the IT management division of Zoho Corporation, ManageEngine prioritizes flexible solutions that work for all businesses, regardless of size or budget.

Clayden Law

Clayden Law

Clayden Law are experts in information technology, data privacy and cybersecurity law.

TZ-CERT

TZ-CERT

TZ-CERT is the National Computer Emergence Response Team of Tanzania.

Actiphy

Actiphy

Actiphy provides a tried and proven backup and disaster recovery software solution to ensure business continuity at all times.

Hodgson Russ

Hodgson Russ

Hodgson Russ is a US business law firm. Practice areas include Privacy, Data Breach & Cybersecurity.

Vectra Networks

Vectra Networks

Vectra provides real-time attack visibility and non-stop automated threat hunting powered by artificial intelligence.

Giesecke+Devrient (G+D)

Giesecke+Devrient (G+D)

Giesecke+Devrient develop security technologies in four major areas: enabling secure payment, providing trusted connectivity, safeguarding identities and protecting digital infrastructures.

CyberPoint

CyberPoint

CyberPoint delivers innovative, leading-edge cyber security products, solutions, and services to customers worldwide.

Teramind

Teramind

Teramind provides a user-centric security approach to monitor employee behavior in order to identify suspicious activity, detect possible threats, monitor efficiency, and ensure industry compliance.

Cybertech

Cybertech

Cybertech Conference & Exhibition presents commercial problem solving strategies and solutions for the global cyber threat that meet the diverse challenges for a wide range of sectors.

CSIRT-CY

CSIRT-CY

CSIRT-CY is the National Computer Security Incident Response Team for Cyprus.

AlAnsari Technical Solutions (ATS)

AlAnsari Technical Solutions (ATS)

ATS is a Kuwait based company specialised in delivering hardware/software, Virtualisation, IP Telephony / Unified Communication, Networking and professional IT services and solutions.

Havelsan

Havelsan

HAVELSAN is a leading technology company in Turkey developing indigenous systems for domestic and foreign military, public and private sector clients.

CM Blockchain Security Center

CM Blockchain Security Center

We are dedicated to building a healthier blockchain ecosystem, providing solutions to security technology, and helping those who practice in the area of blockchain to get insight into industry trends.

Kocho

Kocho

Kocho (previously TiG) is a provider of identity and access, cyber security, cloud transformation, and managed IT services.

Amvia

Amvia

Amvia is a fast-growing telecoms, Internet and Microsoft service provider. We supply voice, data and cyber security services to 100s of small and large companies.

Mode Solutions

Mode Solutions

Mode guarantee IT performance where you need it most, creating seamless and secure solutions that will alleviate pressure from your business.

Secora Consulting

Secora Consulting

Secora Consulting is a professional services company specialising in tailored cybersecurity assessments and cyber advisory services.