Hacking satellites to expose vulnerabilities. - T-Minus Space Daily

Summary

T-Minus Space Daily: Episode Summary - "Hacking Satellites to Expose Vulnerabilities"

Release Date: August 8, 2025
Host: Maria Varmazis
Publisher: N2K Networks

Introduction

In this episode of T-Minus Space Daily, host Maria Varmazis delves into pressing issues within the space industry, highlighting significant advancements, financial updates, and critical vulnerabilities exposed in satellite technologies. The episode provides a comprehensive overview of the latest developments, ensuring listeners are well-informed about the dynamic landscape of space operations and cybersecurity.

Top Story: Vision Space Technologies Exposes Critical Satellite Vulnerabilities

The centerpiece of today's briefing focuses on a groundbreaking revelation from Vision Space Technologies, presented at this year's Black Hat conference in Las Vegas—an event synonymous with cybersecurity advancements.

Key Findings:
Vision Space Technologies identified several critical vulnerabilities in widely-used space industry software, including Cryptolib, Yams, OpenC3, Cosmos, and NASA's Core Flight System Aquila. These vulnerabilities pose significant risks, such as unauthorized commands that can alter a satellite's trajectory or even cause a complete system crash.
Notable Demonstrations:
During their presentation, researchers simulated unauthorized thruster firings, demonstrating how easily a satellite's course could be manipulated (04:30). Additionally, they showcased how unauthenticated telephone exploits could crash onboard software, forcing satellites to reboot or reset entirely.
Responsible Disclosure:
Maria emphasizes that Vision Space Technologies responsibly disclosed these vulnerabilities to the respective software owners, leading to timely remediations. As Maria states, “It is crucial to note here that the researchers responsibly disclosed these vulnerabilities with the software owners, and the vulnerabilities have subsequently been remediated prior to the Black Hat presentation” (05:20). Detailed research posts and specific CVEs are available in the show notes for those interested in the technical aspects.

China's First Lunar Lander Test: A Leap Towards Manned Moon Missions

China has made a significant stride in its space exploration ambitions with the successful test of its first lunar lander, Lanyue (meaning "Embrace the Moon").

Test Details:
The lander underwent rigorous testing under multiple operational conditions at a site in Hebei Province, designed to mimic the moon's surface. This test validated the ascent and descent systems, marking a pivotal milestone in China's plan to transport humans to the lunar surface.
Future Capabilities:
Beyond transportation, Lanyue is engineered to serve as a living space, power source, and data center once on the moon, paving the way for sustained human presence.

Rocket Lab's Progress on the US Space Force's Victus Hayes Mission

Rocket Lab has achieved a critical milestone by completing the systems integration review for the US Space Force's Victus Hayes mission.

Mission Overview:
Victus Hayes is part of the Space Systems Command's Tactically Responsive Space program, led by Space Safari in collaboration with the Defense Innovation Unit.
Progress and Financials:
The systems integration review, finalized in May, confirmed that all spacecraft components, systems, and software are ready for the next phases of integration and testing. This follows the successful critical design review earlier in the year, which validated the mission's design and paved the way for production.

Rocket Lab reported impressive financial results for the second quarter, with revenues of $144 million, marking a 36% year-over-year growth. The company successfully completed five launches in the quarter, including two consecutive launches from the same site in New Zealand.

Financial Updates: Globalstar and Carmen Space & Defense

In addition to Rocket Lab, other industry players have reported their second-quarter financial outcomes:

Globalstar:
Generated revenue of $67.1 million, reflecting an 11% increase over the previous year. The growth was driven by higher wholesale capacity services and commercial IoT revenue.
Carmen Space & Defense:
Achieved a record quarterly revenue of $115.1 million, a 35.3% year-over-year increase.

Detailed financial reports are accessible via the show notes for listeners seeking in-depth information.

Voyager Technologies Acquires Electromagnetic Systems (EMSI)

Voyager Technologies has strategically acquired Electromagnetic Systems, Inc. (EMSI), a software developer specializing in AI and machine learning-based automated target recognition and intelligence analytics for space-based radar systems.

Strategic Alignment:
This acquisition aligns with Voyager's objective to scale AI-native mission-resilient systems that support US Defense and intelligence priorities.
Future Implications:
Together, the combined entities aim to enhance their offerings with advanced imaging, automated target recognition, and feature exploitation, strengthening their position in the defense and intelligence sectors.

Additional Headlines with Alice Carruth

Senior producer Alice Carruth shares three additional stories:

Interstellar Comet Enters Our Solar System:
The Hubble Space Telescope has provided a size estimate for the newly detected interstellar comet, offering valuable insights into its composition and trajectory.
Air Environment and SNC Partnership:
Air Environment is collaborating with SNC on Golden Dome submissions, focusing on innovative aerospace solutions.
Muon Space's New Satellite Platform:
Muon Space unveiled a new satellite platform, announcing the Hubble Network as its first customer. It's clarified that this Hubble refers to a different entity than the famous space telescope.

All additional stories and detailed information are available in the show notes on space.n2k.com.

Space Traffic Report: Recent and Upcoming Launches

Partnering with nasaspaceflight.com, the Space Traffic Report segment covers recent launches and upcoming missions:

Recent Launches:
- Blue Origin's New Shepard (August 3, 12:42 UTC):
  Carried six passengers to the edge of space. Notably, Justin Sun, an initial bidder for a seat back in 2021, finally participated after a delay.
- SpaceX's Falcon 9 (August 4, 7:57 UTC):
  Launched 28 Starlink V2 mini satellites, contributing to SpaceX's total of 9,342 Starlink satellites in orbit.
- China's Changzhong 12 Rocket (August 4, 10:21 UTC):
  Deployed nine Guo Wang satellites, marking the seventh operational batch.
- Rocket Lab's Electron Rocket (August 5, 4:10 UTC):
  Successfully launched the QPS SAR 12 satellite for Japanese company IQPS.
- Geelong 3 Launch:
  Sent the fourth batch of GEELY satellites into low Earth orbit, enhancing Geely's navigation augmentation systems.
Upcoming Launches:
- SpaceX's Crew 10 Return:
  Scheduled to undock from the International Space Station on August 8th at 22:05 UTC, pending weather conditions.
- ULA's Vulcan Rocket (August 12th, 23:49 UTC):
  Set to launch the USSF 106 mission, potentially the first national security mission on Vulcan after overcoming previous delays.
- Ariane 6 Rocket Launch:
  Carrying the Metop SGA1 weather satellite for Europe, originally slated for a Soyuz rocket but moved to Ariane 6 due to geopolitical factors.

National Space Society's Goddard 100 Student Contest

In celebration of the 100th anniversary of Robert Goddard's first rocket launch, the National Space Society has launched the Goddard 100 Student Contest.

Contest Details:
- Eligibility: Open to K-12 and college students.
- Categories: Include essays, art, video, and 3D models of rockets and habitats.
Prizes and Opportunities:
Winning entries will be published in AD Astra, the magazine of the National Space Society, showcased at the International Space Development Conference, and awarded cash prizes.
Submission Deadline: March 15, 2026.

Maria Varmazis encourages educational institutions and students to participate, highlighting the contest as a tribute to Goddard's legacy and a platform for the next generation of space innovators.

Conclusion

This episode of T-Minus Space Daily provides a thorough analysis of critical cybersecurity vulnerabilities in space systems, significant advancements in lunar exploration by China, substantial financial growth among key space companies, and strategic acquisitions shaping the industry's future. Additionally, the report encompasses recent and forthcoming space launches, ensuring listeners are abreast of the latest developments. The introduction of the Goddard 100 Student Contest further emphasizes the podcast's commitment to fostering the next wave of space enthusiasts and professionals.

For more detailed information, including links to research, financial reports, and additional stories, refer to the show notes available on the podcast platform and the N2K Networks website.

This summary captures the essential discussions and insights from the "Hacking Satellites to Expose Vulnerabilities" episode of T-Minus Space Daily, providing a comprehensive overview for listeners and enthusiasts alike.

Transcript

Maria Varmazis (0:00)

Foreign you're listening to the N2K space network.

Cyberark Representative (0:09)

CISOs and CIOs know machine identities now outnumber humans by more than 80 to 1 and without securing them trust, uptime, outages and compliance are at risk. Cyberark is leading the way with the only unified platform purpose built to secure every machine identity, certificates, secrets and workloads across all environments, all clouds and all AI agents. Designed for scale automation and quantum readiness, Cyberark helps modern enterprises secure their machine future. Visit cyberark.com machines to see how.

Maria Varmazis (0:57)

Today is August 8, 2025. I'm Maria Varmazis and this is T min T minus 20 seconds. Voyager Technologies has acquired software developer Electromagnetic Systems 4 Rocket Lab, Globalstar and Carmen Space and Defense have reported second quarter financial results. Rocket Lab has completed the systems integration review for the US Space Force's Victus Hayes mission. China has conducted conducted its first test of a lunar lander that they plan to use to take humans to the moon. Vision Space Technologies has demonstrated software vulnerability exploits on satellites as well as on the ground stations that control them. And it is Friday. Hooray. And our partners@nasaspaceflight.com will be bringing us the Space Traffic Report after today's headlines. They'll be wrapping up the launch news from the last seven days and taking a look at what's to come in the week ahead. Don't miss it. You made it to Friday, everybody. Congratulations. In the meantime, let's get into our daily briefing. Our top story comes from the world of space cybersecurity because right now it is a very special time in Las Vegas for cybersecurity professionals. Its effectiveness, affectionately known as Hacker Summer Camp, a mega week of professional conferences in Las Vegas, including major events like Black Hat and defcon, where researchers often share key findings from their work. This year's Black Hat conference included a major finding in the realm of space cybersecurity from researchers at Vision Space Technologies. According to a new piece from the Register, the researchers found a number of vulnerabilities, some rated critical, in a number of software that is heavily used in the space industry onboard satellites as well as in ground stat. And those include cryptolib, yams, openc3, cosmos, and NASA's core flight system Aquila. During their Black Hat presentation, the Vision Space researchers simulated being able to send an unauthorized command to fire a satellite's thrusters and immediately change its course. Another vulnerability that they found when exploited using an unauthenticated telephone could completely crash a satellite's onboard software, forcing it to reboot and in some cases fully reset. VisionSpace showed that other flaws that they discovered in spaceflight system software allowed for remote code executions, denial of service attacks, credential leakage, cross site scripting attacks, or even granted full code execution permissions. It is crucial to note here that the researchers responsibly disclosed these vulnerabilities with the software owners, and the vulnerabilities have subsequently been remediated prior to the Black Hat presentation. In plain language, there are fixes for all of these problems and we will have links to the full research posts from VisionSpace in the show Notes for you, which includes more detail on their research along with the specific CVEs for these vulnerabilities. If that is information that you need Moving on now and China has conducted its first test of a lunar lander that they plan to use to take humans to the moon. China's manned space agency says the test involved multiple operational conditions, a lengthy testing period and high technical complexity. The making it a critical milestone in the development of China's manned lunar exploration program. The lander's ascent and descent systems were tested at a site in Hebei Province that was designed to simulate the moon's surface. The lunar lander, known as Lanyue, which translates to embrace the moon, will be used to transport astronauts between the lunar orbit and the moon's surface. The agency says it'll also serve as a living space power source and data center after they land on the moon. Rocket Lab has completed the systems integration review for the US Space Force's Victus Hayes mission. Victus Hayes is part of the Space Systems Command's Tactically Response Space program led by Space Safari in partnership with the Defense Innovation Unit. The review, although only announced yesterday, was actually completed in May and marked a critical program milestone, confirming that all spacecraft components, systems and software were ready for final integration and testing. It followed Rocket Lab's successful critical design review earlier in the year, which validated the mission design and cleared the way for production. Following the systems integration review, Rocket Lab completed spacecraft integration and the vehicle is now entering final testing just 15 months after contract award and staying with Rocket Lab. By the way, they, along with two other space companies, filed second quarter financial updates yesterday. It's been a big year for Rocket Lab, with quarterly revenue of $144 million, which represents a 36% year on year growth. The company's launch cadence is steadily increasing as they completed five launches in the quarter, including two launches two days apart from the same launch site in New Zealand. Impressive stuff. Globalstar and Carbon Space and Defense also reported their quarterly updates. Global Star says it generated second quarter revenue of $67.1 million, which is an 11% increase over the prior year period and it was driven by higher wholesale capacity services and commercial IoT revenue. And for its part, Harman Space and Defense produced record quarterly revenue of $115.1 million up 35.3% year over year. And you can read all of those full results by following the links in our show notes and there you will also find updates on Firefly Aerospace's NASDAQ debut and last up Voyager Technologies has acquired software developer Electromagnetic Systems, also known as emsi. EMSI develops AI and machine learning based automated target recognition software and intelligence analytics for space based radar systems and the acquisition is part of Voyager's plan to scale AI native mission resilient systems that align directly with US Defense and intelligence priorities. The companies say that together they can expand their offerings with cutting edge machine learning and AI to deliver advanced imaging, automated target recognition and feature exploitation foreign and that concludes today's Friday Intel Briefing for you. We will have more space stories coming up with the NSF Space Traffic Report. But before we get into that, N2K senior producer Alice Carruth joins us now with the other headlines from across the space industry that didn't quite make today's Top five.