During the EU Space Cybersecurity Hackathon, held on October 17–18, 2025, in Madrid, experts gathered to discuss the pressing challenges of space cybersecurity.

‍

Moderated by César Carmona (Novaspace), the panel "Space Cybersecurity Challenges" included Massimo Panzeri (ESA) and Gabriel González (IOActive). The discussion offered critical insights into current threats, European cooperation, and strategies for building more resilient space systems.

‍

‍

Spacetech Experts at the Roundtable

‍

"Cyber events in space are not a hypothetical — they are happening today”, said César Carmona, Principal at Novaspace, an International expert in secure satellite communications and leader in solutions to protect Europe’s space infrastructure.

‍

César Carmona framed the discussion around emerging cyber threats to space systems, noting that satellites were traditionally not designed with cybersecurity in mind. Older satellites used proprietary, non-networked systems, making direct attacks difficult. However, with the rise of satellite constellations and IP-based “flying network devices,” vulnerabilities are increasingly similar to those on the ground. Carmona stressed that cyber warfare in space is real, referencing Ukraine’s ongoing conflict and the high-profile Viasat attack, noting over 160 cyberattacks targeting space systems in recent years. 

‍

"Space security must start with a unified design – security experts, architects, and engineers working together from day one”, said Massimo Panzeri, Manager of Security and Program Accreditation at the European Space Agency’s Security Office, responsible for defining and implementing cybersecurity strategies for space missions.

‍

Massimo Panzeri highlighted that space systems are complex but share many similarities with IT and OT systems regarding cybersecurity risks. He emphasized that protecting the earth link — the command-and-control connection for satellites — is critical, as many missions still lack sufficient safeguards, leaving them vulnerable to unauthorized commands, altered satellite behavior, or denial-of-service attacks. Satellite software security is also a concern, with malware posing significant risks that require careful attention and protective measures. 

‍

"Compromising devices today is hard — but if you combine many small vulnerabilities, it becomes possible to take control of an entire SATCOM network”, said Gabriel González, Director of Hardware Security at IOActive, a U.S.-based company specializing in cybersecurity research, with extensive experience researching vulnerabilities in satellite systems and communications. 

‍

Gabriel González shared a significant case that he is allowed to discuss: together with his team, he managed to compromise an entire SATCOM network. Starting from a single terminal — similar to a modem used at home or on a vessel — they gained access through the satellite link to the head-end system, the central point where SATCOM connections terminate. From there, they could potentially access thousands of terminals worldwide, proving a critical weakness in the SATCOM infrastructure. During the testing, they even accidentally shut down a modem, briefly leaving part of the world without internet through that SATCOM provider — demonstrating the real impact of space-related cybersecurity vulnerabilities.

‍

Key Takeaways

‍

When common people imagine hacking satellites, they picture sophisticated state actors infiltrating secure command centers. But our experts say the real danger often lies in ordinary oversights — misconfigured antennas, insecure terminals, and supply-chain components no agency can fully trace. 

‍

1. Protecting Space Infrastructure

‍

Satellites and ground systems underpin modern life—from navigation to communications. Securing them requires robust policies, procedures, and continuous monitoring.

‍

Massimo Panzeri: "We need to take into account the security from a 360-degree view, meaning it's fundamental to have a policy, it's fundamental to have requirements, it's fundamental to have processes, procedures, because without this we can’t put in place our security measures."

‍

‍

‍

2. Evolving Threat Landscape

‍

Cyberattacks targeting satellites and their supporting ground systems are growing in both frequency and sophistication.

‍

Massimo Panzeri:  "There is an exponential increase of attacks to the space infrastructure, essentially on the ground segment, but not only on the ground segment. Not only the number of threats is increasing, but also the complexity and the capability that are put in place from the attackers."

‍

‍

3. Information Sharing & Collaboration

‍

Sharing cyber threat intelligence across agencies, member states, and industry strengthens collective defense.

‍

Massimo Panzeri: "Our framework is defined in boards with security experts from each member state. Every three months we report all major events and exchange information to improve our collective security posture."

‍

‍Gabriel González: "Each industry has specific threats, but sharing vulnerabilities and research, as seen in Auto-ISAC for automotive, can be adapted to space. Collaboration strengthens everyone’s defenses."

‍

‍

‍

4. Supply Chain Security

‍

Satellite systems rely on components from hundreds of suppliers worldwide. Weak links anywhere in the chain can compromise entire networks.

‍

Massimo Panzeri: "We try to have contractual provisions with the main suppliers for sensitive components. Next year, we will implement a tool to manage visibility of our components and enforce minimum security requirements for official suppliers."

‍

Gabriel González: "Even if a manufacturer has strong cybersecurity practices, compromised chips or components from other regions can undermine the entire system. Supply chain security cannot be overlooked."
‍

‍

5. Security by Design

‍

Cybersecurity must be integrated from the beginning of every mission, combining engineers and security experts across all segments.

‍

Massimo Panzeri: "We need a unique team working together across ground, space, and user segments. Only then can we create a rich, secure design, verified through modeling and continuous testing."

‍

César Carmona closed the discussion by reminding attendees — many of them hackathon participants — that security must be integrated from the very beginning of any project:

‍

“Security by design — not security at the last moment — is essential for every future space mission.”

‍

The panel called for a new era of collaboration among agencies, industry, researchers, and cybersecurity specialists to foster security. 

‍

Because in space, there is no second chance.

‍

Conclusion: THE SIGN MEDIA Perspective

‍

The Madrid discussion made another thing clear: securing space requires more than advanced technology. But more than this, the safety of space infrastructure depends not on what happens in orbit, but on human decisions and oversights on Earth.

‍

The better Europe and its partners collaborate, the more secure the space environment becomes for everyone.

‍

_{Author: Tatiana Skydan, Co-Founder at THE SIGN.MEDIA}

_{Photos: Ania Lewandowska}

‍