Not long ago, ‘cybersecurity’ meant protecting networks, servers and endpoints here on Earth. But as our world becomes increasingly connected through space-based technology, the sky is no longer the limit — it’s the next attack surface. 

Today, satellites orbiting above us do everything from routing your phone calls to synchronizing global financial systems. They manage GPS, weather forecasting, in-flight Wi-Fi and even the timing signals that keep your credit card transactions accurate. Moreover, as the number of satellites multiplies at a pace that feels almost exponential, so does the dark side of that growth: An expanding playground for hackers. 

So, here’s a question worth asking: Could your mainframe get breached from space — or through an exposed satellite connection? 

Forgotten Security Floating Overhead 

It sounds far-fetched — until you realize that many satellites still run on technology from the 1970s and 1980s, back when ‘cybersecurity’ wasn’t even a word. Most were designed with long lifespans and limited computing power, meaning updates and patches aren’t just rare — they’re nearly impossible once the satellite is in orbit. 

That oversight has consequences. Researchers from the University of Maryland and UC San Diego recently showed they could intercept sensitive satellite data from the U.S. military, telecom companies and major corporations using just $600 worth of off-the-shelf equipment. No spy agencies, no advanced funding — just a clear view of the sky and a bit of technical know-how. 

Over several months, the team captured unencrypted voice calls, text messages and even ship identifiers from military vessels — all broadcast freely through the atmosphere. In one case, a nine-hour ‘listening session’ picked up data from more than 2,700 individuals. 

Their finding was damning but unsurprising: Many organizations treat satellites as ‘internal network links’, assuming their transmissions are inherently secure. They aren’t. In fact, many don’t even use basic encryption standards such as IPSec. 

From Orbit to the Office 

While a hacked satellite isn’t going to upload malware to your mainframe directly, it could ‘enable’ someone to do so. Think of satellites as the arteries of modern infrastructure — vital conduits for communication, navigation and data exchange. Compromise one of those arteries, and you can starve or poison the entire system. Hackers can do this in three ways: Signal spoofing and jamming, data interception and command hijacking.  

It’s an unsettling thought: With more than 14,900 satellites currently in orbit, and over 3,000 new launches projected this year alone, the stage is set for more signals, more potential interference and far more opportunities for threat actors to exploit weak spots. 

This isn’t science fiction. The 2022 Viasat hack disrupted internet connectivity across Europe at the onset of the Russia-Ukraine conflict, proving that space infrastructure can — and will — be targeted in modern warfare. 

Mainframes: Still Secure, But Not Invincible Unless… 

While mainframes remain the fortress of enterprise computing and boast a formidable array of security controls, those controls must be turned on to offer protection. But even fortresses can fall if the drawbridge is left down. 

As we move into a post-quantum cryptography world, where traditional encryption becomes obsolete, the lines between space security and terrestrial cybersecurity are blurring. Organizations can’t afford to treat satellite systems as someone else’s problem. If your business relies on satellite timing, GPS or communications (and most do), then your security perimeter already extends beyond the stratosphere. 

The lesson here isn’t panic — it’s preparation. Anything we design, connect or operate — whether it’s a mainframe, a data center or a satellite — must incorporate security by design. That means: 

• Encrypting all satellite-linked communications end to end 

• Vetting third-party vendors that manage satellite connections 

• Using quantum-resistant cryptography for long-term resilience 

• Monitoring for anomalies in satellite-linked data streams 

If this seems far-fetched to you, remove the word ‘satellite’ from the bullets above and ask yourself if you are taking these actions for terrestrial communications. If not, start there immediately before looking to the heavens. 

The cosmos is seemingly infinite, but our complacency shouldn’t be. To be fair, the next mainframe hack probably won’t start with a rogue satellite drifting toward your data center. But it might begin with an unencrypted transmission from orbit — one that leaks just enough information to unlock the doors below. 

The risks have changed, and so must our defenses. Space is no longer the final frontier — it’s the newest one in cybersecurity. Moreover, as we’ve learned time and again, the moment we take security for granted, someone out there — whether on Earth or in orbit — is already looking for a way in.