WASHINGTON, D.C.— U.S. Senators Gary Peters (D-MI), Ranking Member of the Homeland Security and Governmental Affairs Committee, and John Cornyn (R-TX) have reintroduced the bipartisan Satellite Cybersecurity Act to help commercial satellite owners and operators defend against growing cybersecurity threats. Commercial satellites support GPS navigation, weather forecasts, agriculture, scientific research, global communications, and more. The bipartisan legislation would help secure these systems against attacks by hackers, foreign adversaries, and cybercriminals that could cause serious disruptions to our economic and national security.
“Foreign adversaries and cybercriminals continue to target cybersecurity vulnerabilities in commercial satellites, and these attacks have the potential to significantly disrupt American lives and livelihoods,” said Senator Peters. “My bipartisan bill will enable companies and other satellite owners and operators to safeguard their systems against cybersecurity threats.”
“Satellite networks play an important role in our national security, and it’s imperative they’re protected from cyber threats and bad actors,” said Senator Cornyn. “This bill would equip satellite owners and operators with the tools to secure their systems against disruption.”
The rise of small, affordable satellites has led to a boom in companies across many industries launching satellites into orbit. But this proliferation has created new risks: many satellites transmit sensitive data without adequate safeguards, leaving them vulnerable to interception and cyberattacks. Recent studies showed that roughly half of surveyed satellite signals were unencrypted despite the sensitive information or private data they carried.
Experts warn that commercial satellite hacks could have dire economic and security consequences. The Department of Defense has raised alarms, even sponsoring a competition for white-hat hackers to breach an active satellite. In 2022, a Russian cyber-attack on Viasat – a U.S.-based satellite communications company – disrupted internet access in Ukraine on the eve of Russia’s invasion, took thousands of wind turbines across Germany offline, and degraded communications to thousands of organizations across Europe. As satellites become more pervasive, hackers could shut systems down or jam signals to disrupt electric grids, water networks, transportation systems, and other critical infrastructure.
To address these vulnerabilities, the legislation requires the Department of Commerce, in coordination with other federal agencies, to develop voluntary cybersecurity recommendations tailored to satellites. It directs the Department of Commerce to create a publicly available online clearinghouse so companies can easily access best practices and information to secure their systems. The legislation also requires the Government Accountability Office (GAO) to examine efforts to secure commercial satellites from cyber threats, identify any duplication of effort, and assess how satellite systems integrate into critical infrastructure sectors.
In his role on the Homeland Security and Governmental Affairs Committee, Peters has led efforts to ensure our nation is better prepared to defend against cyberattacks. His historic, bipartisan provision to require critical infrastructure owners and operators to report if they experience a substantial cyberattack or if they make a ransomware payment was signed into law. Peters’ bipartisan bills to enhance cybersecurity assistance to K-12 educational institutions, bolster cybersecurity for state and local governments, strengthen the federal cybersecurity workforce, and help secure federal information technology supply chains have also been signed into law.
###