Satellite risk: AI attacks + space junk

Estonia’s CR14 cyber range specifically warned agentic AI—autonomous LLM‑driven agents—could accelerate discovery and exploitation of satellite zero‑days, with CR14’s Kristjan Keskküla estimating that such autonomous attacks could become feasible in roughly two years. (space.com) ETH Zurich researcher Clémence Poirier told Space.com there are still no publicly confirmed AI‑enabled on‑orbit takeovers, while Microsoft and OpenAI reported that the Russian‑linked APT “Fancy Bear” used LLMs in 2024 to research satellite‑communications and radar technical parameters. (space.com) (cyberscoop.com) Australia’s reporting notes about 33,000 trackable objects in Earth orbit and that roughly 17,500 satellites have been launched since 1957, with roughly 12,000 of those launched in the last six years; SpaceX’s Starlink accounts for about 9,600 small satellites and represents a majority share of active constellation assets. (abc.net.au) Policy and incident trends show convergence: CSIS’s 2025 Space Threat Assessment documented roughly 117 publicly reported space‑cyber incidents from January–August 2025 (a ~118% increase year‑over‑year), and CISA’s “Space Systems Security and Resilience Landscape” explicitly recommends applying Zero‑Trust tenets across ground and space segments to manage integrated cyber/kinetic risk. (csis.org) (cisa.gov) Operational mitigation is already being built: the European Space Agency and Estonia are standing up a dedicated space cyber range at CR14 to run realistic satellite‑command/ground‑segment attack‑and‑response exercises, NATO conducted Cyber Coalition exercises at CR14 in 2025, and NIST has published applied guidance mapping the Cybersecurity Framework to satellite ground segments. (esa.int) (janes.com) (csrc.nist.gov)