The 8Base ransomware group has claimed yet another ransomware attack in India. The group has taken aim at the pioneering Indian privately held space launch service startup, ‘Skyroot Aerospace.’
This alleged Skyroot Aerospace ransomware attack has rattled the Indian space agency community and is giving a strange perspective to the security of the Indian space domain, considering the fact that India completed its third lunar exploration, Chandrayaan-3, on August 23.
The Indian space agency cyber attack, as claimed by the 8Base ransomware group, alleges that they have successfully infiltrated Skyroot Aerospace’s internal systems, compromising a trove of sensitive data, including financial records, confidential documents, personal information, and other Personally Identifiable Information (PII).
As a testament to the Skyroot Aerospace ransomware attack, the 8Base ransomware group has ominously issued a 5-day ultimatum to the company in their dark web post.
Skyroot Aerospace ransomware attack and the Russia connection
The origins of the attack trace back to the dark web channel known as “8BASE”, where the Pro-Russia threat actor communicated their message: “YOUR DATA IS NOT SAFE.” In a further attempt to amplify their exploit, the group hinted at a potential release of the exfiltrated information on September 2, 2023.
Skyroot Aerospace, a prominent player in India’s burgeoning private space sector, represents the country’s aspirations to revolutionize space travel and exploration – much like how Space X aims to privatize space travel.
With a mission to create responsive, reliable, and economically viable space access technologies, Skyroot envisions a future where spaceflight becomes as routine and accessible as air travel.
However, soon after Chandrayaan-3 landed on the South pole side of the Moon, the Skyroot Aerospace cyber attack cast a shadow over the remarkable achievements of Indian aerospace. Skyroot Aerospace’s accomplishments include launching India’s first private rocket in 2022.
Founded in Hyderabad and supported by Singapore’s sovereign wealth fund, GIC, the company’s trajectory appeared to be soaring.
Co-founder Pawan Kumar Chandana, a former scientist with the Indian Space Research Organisation (ISRO), shared that the company aims to double its launch frequency, targeting at least two launches annually starting in 2024.
Cyber attack on Indian space agency: Challenges and resilience amidst adversity
While the Skyroot Aerospace ransomware attack has exposed vulnerabilities within Skyroot Aerospace, the cyber attack has not been verified.
The Cyber Express reached out to the Indian Space Launch Services company to learn more about the Skyroot Aerospace ransomware attack.
However, at the time of writing, no official statement or response had been received, thus making the claims for the Skyroot Aerospace ransomware attacks unverified.
However, it is worth noting that this Skyroot Aerospace ransomware attack is not the first attack on aerospace agencies.
Recent reports by space.com reveal that the U.S. space industry is also under threat from spies and hackers seeking to exploit vulnerabilities in satellite infrastructure.
Intelligence agencies have issued warnings about potential cyberattacks, espionage, and the use of counter-space systems to disrupt satellite operations.
As the Indian Space Launch Services grapples with the aftermath of the Skyroot Aerospace ransomware attack, aerospace agencies like NASA and ISRO are no strangers to cybersecurity attacks either. According to a 2021 NASA report, NASA faced nearly 2,000 cyber attacks in 2020.
Similarly, Chinese hackers have been targeting the ISRO for over a decade, attempting cyber attacks on land systems as well as satellite communications, as per China Aerospace Studies Institute (CASI), a US-based research institute, reported EurAsian Times.
Media Disclaimer: This report is based on internal and external research obtained through various means. The information provided is for reference purposes only, and users bear full responsibility for their reliance on it. The Cyber Express assumes no liability for the accuracy or consequences of using this information.