Cyberthieves Hit European Space Agency, Stealing Hundreds of Gigabytes of Data

The space industry is increasingly a target for sophisticated cyber‑actors, a trend amplified by the growing reliance on digital systems for satellite control, data processing, and commercial services. Recent disclosures from NASA, ESA, and private contractors illustrate how threat groups exploit both public‑facing portals and internal networks, often leveraging infostealer malware that harvests stored credentials and multi‑factor tokens. This shift reflects a broader convergence of geopolitical competition and cybercrime, where the theft of technical blueprints can translate into strategic advantage or financial gain.

ESA’s twin breaches underscore systemic weaknesses that extend beyond a single organization. The initial 200 GB dump by the hacker known as “888” exposed proprietary software and access tokens, while the subsequent 500 GB exfiltration by Scattered Lapsus$ Hunters included detailed spacecraft schematics and contractor data from SpaceX, Airbus, and Thales Alenia Space. Analysts attribute the success of these attacks to insufficient cyber hygiene among staff and unpatched vulnerabilities in both ESA’s own infrastructure and third‑party supply‑chain tools. The volume and diversity of the stolen material raise concerns about potential reconstruction of mission‑critical systems or the sale of sensitive information on dark‑web markets.

For the broader space ecosystem, the incident serves as a warning that isolated data leaks can compound into actionable intelligence for future assaults. Organizations must adopt a zero‑trust architecture, enforce regular credential rotation, and conduct continuous penetration testing across all partner networks. Investment in threat‑intelligence sharing platforms and industry‑wide cyber‑risk frameworks will be essential to safeguard the increasingly valuable orbital assets that underpin communications, navigation, and Earth‑observation services. Proactive resilience measures will not only protect mission success but also preserve the commercial viability of the rapidly expanding space economy.