European Space Agency hit by cyberattack, hundreds of GBs data leaked
ESA is opening criminal investigation to look into the details of leaked data
A major cyberattack has struck against the European Space Agency (ESA) with hackers gaining access to their systems and leaking out huge amounts of their classified data. This recent attack is a reason for concern for the cybersecurity of the space domain, as the problem seems to be increasing for the space agencies and firms.
The attack is related to stolen scientific data, proprietary software, credentials, and internal mission files, with connections to Airbus, SpaceX, and Thales Alenia Space.
Reportedly, the initial hack occurred on Boxing Day, where a hacker with the handle “888” released over 200 gigabytes of data connected to the ESA. This followed a group calling itself Scattered Lapsus$ Hunters claiming responsibility for a hack where a total of about 500 gigabytes were released.
The hacking group said this was possible because of the known security bug that had not yet been fixed. The ESA has indeed opened a criminal investigation into this incident.
Experts explain these cyberattacks usually target poor cyber-hygiene practices, such as password reuse or infostealer malware. A malicious tool may steal login details, session cookies, and classified documents without alerting users.
Although ESA claimed there is “currently no direct operational threat”, experts believe multiple data leaks may reveal strategic information.
Experts on security state that there could be potential risks either within ESA's systems or those of contracted third-party companies. It is noticeable that the interrelated nature of the space sector could mean that with just a single weak link, there exists the potential for more widespread vulnerability.
Cases of cyberattacks on space organisations are rising in number. Both ESA and NASA have been targets in numerous attempts to break into their systems in recent years.
-
Google to ban Chrome extensions that jailbreak AI
-
Argentina to become world's first country to introduce 'AI-Automated' company
-
OxygenOS, Realme UI may be replaced by ColorOS, report claims
-
Europe cracks down on video games with new age, loot box rules
-
Google disrupts proxy network used by hackers for malware operations
-
Alibaba is banning Claude Code over backdoor claims: Here’s why
-
Anthropic closes loopholes allowing Chinese access to Claude AI: Report
-
Instagram faces backlash over promotion of child abuse ads
