Denial

Measures designed to temporarily eliminate the use, access, or operation of a system for a period of time, usually without physical damage to the affected system. Threat actors may seek to deny ground controllers and other interested parties access to the victim spacecraft. This would be done exhausting system resource, degrading subsystems, or blocking communications entirely. This behavior is different from Disruption as this seeks to deny communications entirely, rather than stop them for a length of time.

ID: IMP-0003

Sub-techniques: No sub-techniques

Related Aerospace Threat IDs: SV-AV-1 SV-AV-2 SV-AV-3 SV-AV-4 SV-AV-5 SV-AV-6 SV-MA-2 SV-MA-3 SV-MA-5 SV-MA-7 SV-MA-8 SV-SP-1 SV-SP-3 SV-SP-4 SV-SP-5 SV-SP-9

Related MITRE ATT&CK TTPs: No related MITRE ATT&CK TTPs

ⓘ

Tactic: Impact

Created: 2022/10/19

Last Modified: 2023/07/18

Countermeasures

ID		Name	Description	NIST Rev5	D3FEND	ISO 27001
CM0000		Countermeasure Not Identified	This technique is a result of utilizing TTPs to create an impact and the applicable countermeasures are associated with the TTPs leveraged to achieve the impact	None		None

Related CWE Classes

Priority 1	Priority 2	Priority 3	Priority 4
CWE-118: Incorrect Access of Indexable Resource ('Range Error')	CWE-228: Improper Handling of Syntactically Invalid Structure	CWE-1023: Incomplete Comparison with Missing Factors	CWE-114: Process Control
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer	CWE-311: Missing Encryption of Sensitive Data	CWE-269: Improper Privilege Management	CWE-642: External Control of Critical State Data
CWE-1263: Improper Physical Access Control	CWE-345: Insufficient Verification of Data Authenticity	CWE-400: Uncontrolled Resource Consumption	CWE-669: Incorrect Resource Transfer Between Spheres
CWE-138: Improper Neutralization of Special Elements	CWE-404: Improper Resource Shutdown or Release	CWE-657: Violation of Secure Design Principles	CWE-913: Improper Control of Dynamically-Managed Code Resources
CWE-1384: Insecure Default Variable Initialization	CWE-684: Incorrect Provision of Sensitive Information	CWE-671: Lack of Accounting for Security Implications in Design	CWE-922: Insecure Storage of Sensitive Information
CWE-1391: Improperly Implemented Security Check for Standard	CWE-74: Improper Neutralization of Special Elements in Output Used by a Downstream Component ('Injection')	CWE-704: Incorrect Type Conversion or Cast
CWE-172: Encoding Error	CWE-912: Hidden Functionality
CWE-20: Improper Input Validation
CWE-285: Improper Authorization
CWE-287: Improper Authentication
CWE-326: Inadequate Encryption Strength
CWE-327: Use of a Broken or Risky Cryptographic Algorithm
CWE-330: Use of Insufficiently Random Values
CWE-362: Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')
CWE-506: Embedded Malicious Code
CWE-610: Externally Controlled Reference to a Resource in Another Sphere
CWE-662: Improper Synchronization
CWE-665: Improper Initialization
CWE-667: Improper Locking
CWE-696: Incorrect Behavior Order
CWE-732: Incorrect Permission Assignment for Critical Resource
CWE-77: Improper Neutralization of Special Elements used in a Command ('Command Injection')
CWE-834: Excessive Iteration

Indicators of Behavior

ID	Name	Description	STIX Pattern

References

https://www.doctrine.af.mil/Doctrine-Publications/AFDP-3-14-Counterspace-Ops/
Fritz, J.: Satellite Hacking: A Guide for the Perplexed. In: Culture Mandala: Bulletin of the Centre for East-West Cultural and Economic Studies, Vol. 10, No. 1, December 2012-May 2013, pp40(1998 PANAMSAT)
Thuraya Telecom Services Affected by Intentional Jamming in Libya. (2011). Retrieved on February 16, 2013, from http://www.thuraya.com/about/profile/media-releases/thuraya-telecom-services-affected-byintentional-jamming-in-libya
Steinberger, Jessica A. (2008). A Survey of Satellite Communications System Vulnerabilities. Retrieved on
The Royal Academy of Engineering: Global NavigationSpace Systems:reliance and vulnerabilities Url: https://www.raeng.org.uk/publications/reports/global-navigation-space-systems. March 2011 Retrieved 08/07/2019
Ferrazzani, M. and Zilioli, I.: ESA facing Cyber Security Concerns In: EUSpace Jean Monnet Module 2018 Url: http://www.eu-space.eu/images/2018/document/Slides/Slides-Ferrazzani-Zilioli.pdf Retrieved 08/07/2019
Halliday, J.: BBC fears Iranian cyber-attack over its Persian TV service Url: https://www.theguardian.com/media/2012/mar/14/bbc-fears-iran-cyber-attack-persian March 2012 Retrieved 09/07/2019
Pagliery, J.: U.S. weather system hacked, affecting satellites Url: https://money.cnn.com/2014/11/12/technology/security/weather-system-hacked/index.html December 2014 Retrieved 09/07/2019
Flaherty, M.P. and Samenow, J. and Rein, L.: Chinese hack U.S. weather systems, satellite network Url: https://www.washingtonpost.com/local/chinese-hack-us-weather-systems-satellite-network/2014/11/12/bef1206a-68e9-11e4-b053-65cea7903f2e_story.html?utm_term=.19171e40af67 November 2014 Retrieved 09/07/2019
https://cromulence.com/blog/hack-a-sat-2022-finals-teams-on-the-attack
https://www.almaobservatory.org/alma-update-on-the-recovery-from-cyberattack/
http://jmichaelwaller.com/wp-content/uploads/2016/08/IM-Telstar-Aug2003.pdf
http://news.bbc.co.uk/1/hi/sci/tech/4602674.stm
https://deadline.com/2022/10/french-satellite-operator-eutelsat-satellites-jammed-iran-1235137968/
https://ecadforum.com/2011/06/30/china-accused-of-jamming-tv-websites-in-ethiopia-computerworld-reported/
https://freebeacon.com/national-security/moscow-accuses-ukraine-of-electronic-attack-on-satellite/
https://twitter.com/elonmusk/status/1500026380704178178?s=20&t=rjlQDwlgJOec1Zic3zVblw
https://www.arabsat.com/NewsDetails.aspx?pageid=428&lang=2
https://www.spiegel.de/international/world/silencing-unwanted-coverage-iran-jams-satellite-signals-carrying-foreign-media-a-686670.html
https://twitter.com/Cyberknow20/status/1593718963497672705
https://www.linkedin.com/feed/update/urn:li:activity:6983446841275084801
https://www.linkedin.com/feed/update/urn:li:activity:6983753241767337984
https://www.linkedin.com/feed/update/urn:li:activity:6985237641747120128
https://www.reuters.com/article/us-nasa-hacking-idUSTRE81803S20120209