The 8Base ransomware group has declared that it has executed another ransomware attack in India, this time targeting the Indian space launch service startup, Skyroot Aerospace. This alleged cyber attack has caused a stir within the Indian space agency community and raises concerns about the security of the country’s space domain. It is particularly alarming considering India’s recent successful lunar exploration, Chandrayaan-3, which was completed on August 23.
According to the claims made by the 8Base ransomware group, they have managed to infiltrate the internal systems of Skyroot Aerospace, compromising a significant amount of sensitive information. This includes financial records, confidential documents, personal information, and other Personally Identifiable Information (PII). To demonstrate the seriousness of their attack, the 8Base ransomware group has issued a dark web post that includes a 5-day ultimatum for Skyroot Aerospace.
The origins of this attack can be traced back to the dark web channel known as “8BASE,” where the threat actor with alleged pro-Russia affiliations communicated their message to Skyroot Aerospace, stating that their data is not safe. The group also hinted at the potential release of the stolen information on September 2, 2023.
Skyroot Aerospace is a prominent player in India’s private space sector and represents the country’s aspirations to revolutionize space travel and exploration. Similar to Space X, Skyroot Aerospace aims to make space travel routine and accessible through the creation of responsive, reliable, and economically viable space access technologies. The company has already achieved notable milestones, including launching India’s first private rocket in 2022. With the support of Singapore’s sovereign wealth fund, GIC, Skyroot Aerospace seemed to be on an upward trajectory.
However, the cyber attack on Skyroot Aerospace has cast a shadow over the remarkable achievements of Indian aerospace, particularly after the success of Chandrayaan-3. The attack has exposed vulnerabilities within Skyroot Aerospace, although it should be noted that the claims made by the 8Base ransomware group have not been verified. The Cyber Express reached out to the Indian Space Launch Services company for more information, but no official statement or response has been received at the time of writing.
While this specific attack on Skyroot Aerospace is concerning, it is not an isolated incident. Reports indicate that the U.S. space industry is also under threat from spies and hackers attempting to exploit vulnerabilities in satellite infrastructure. Intelligence agencies have issued warnings regarding potential cyberattacks, espionage, and the use of counter-space systems to disrupt satellite operations. This highlights the ongoing challenges that aerospace agencies worldwide face regarding cybersecurity.
Aerospace agencies like NASA and ISRO (Indian Space Research Organisation) have also dealt with cybersecurity attacks in the past. A 2021 NASA report revealed that the agency faced nearly 2,000 cyber attacks in 2020. Additionally, Chinese hackers have been targeting ISRO for over a decade, attempting cyber attacks on land systems and satellite communications, according to the China Aerospace Studies Institute (CASI), a US-based research institute.
As the Indian Space Launch Services and Skyroot Aerospace address the aftermath of this ransomware attack, it becomes apparent that resilience and robust cybersecurity measures are vital in protecting sensitive information and maintaining the integrity of space operations. The threat landscape continues to evolve, and it is crucial for agencies and organizations involved in space exploration to prioritize cybersecurity and take proactive measures to prevent and respond to cyber attacks.
Please note that the information provided in this report is based on internal and external research obtained through various means. The accuracy and consequences of using this information are the sole responsibility of the users. The Cyber Express assumes no liability for any inaccuracies or outcomes resulting from the use of this information.