The defence and space sector is critical to national security, with highly sensitive data and systems that require the highest level of protection. Threats come from state-sponsored cyber espionage, advanced persistent threats (APTs), and other sophisticated attack groups. Recent high-profile attacks in the sector include:
- The Japan Aerospace Exploration Agency (JAXA) was the recipient of a cyber-attack against their central server in Summer 2023 – the agency stated that the information that was attained was not of a sensitive nature, nor was it ‘important for rocket and satellite operations’. The attack was achieved by using the vulnerabilities in network equipment, however, JAXA refused to state anything further at time of questioning.
- British Military communications networks were attacked over 6 million times between 2022-2023, with attackers ranging from state-backed groups, to individual criminals. The information on the number of attacks was revealed in a statement made by General Sir Jim Hockenhull, from the UK’s Strategic Command, at the Defence and Security Equipment International (DSEI) conference in 2023. Specific information on the attacks was not made public, due to National security concerns.
- Viasat, a Russian satellite company, was victim to an attack on their KA-SAT network in late February 2022, where an attacker used a poorly configured VPN to gain access to the trusted management area of the network. The attackers issued commands to overwrite part of the flash memory in modems, rendering them unable to access the network – however, no permanent damage was done.
Compliance requirements include JSP 440, HMG accreditation, and Secure by Design. The UK Government cyber strategy emphasises the importance of enhancing the cybersecurity of the defence and space sector and their suppliers.
How We Can Help
At AMR CyberSecurity, we provide a range of services that help the defence and space sector and its suppliers to mitigate cyber threats. Our penetration testing, technical systems audit, certification and accreditation, compliance, risk management, security architecture, and threat intelligence services are all tailored to meet the specific needs of each organisation. Our team includes experienced security professionals with extensive knowledge of the defence and space sector and its suppliers so we understand the unique cybersecurity challenges faced. We work collaboratively with our clients to provide objective and independent guidance and transfer knowledge to build in-house cyber resilience.
Why AMR CyberSecurity
AMR CyberSecurity is committed to providing the highest level of service to our clients in the defence and space sector and their suppliers. We are CREST accredited for penetration testing and STAR testing and NCSC CHECK accredited. We are also independently audited and hold ISO 27001 certification for security, CE Plus Certification, and ISO 9001 certification for quality management. Our accreditations demonstrate our commitment to quality and security. Our team has extensive experience working in the defence and space sector and their suppliers, providing effective and robust, threat-led guidance.
