The Two Biggest Emerging Battlegrounds and Threats to National Security: Cyber and Space

Geoffrey Mattson, the CEO of Xage Security, comments on how cybersecurity and space are becoming two of the most significant threats to national security. This article originally appeared in Insight Jam, an enterprise IT community that enables human conversation on AI.

We live in a time of rapid technological advancement. Two emerging battlegrounds—cybersecurity and space—are redefining what we know as national security in the U.S. Zooming in on the digital realm, with its vast networks and interconnected systems, we see that while a cybersecurity breach starts virtually, it can impact people in the physical world.

Prime examples include the 2021 Colonial Pipeline Ransomware Attack, which led to the shutdown of a major fuel supply line to the better part of the US East Coast, and the 2024 UnitedHealth’s Change Healthcare Cyber Attack, where healthcare providers experienced significant disruptions in their ability to process payments, impacting people in need of healthcare support.

Disinformation and propaganda represent significant security threats that we must also be vigilant against today. The FBI’s warning about foreign adversaries using artificial intelligence to spread false information in the U.S. is a perfect example of a threat on our doorstep. As we inch closer to the elections, these threats, whether from state or non-state actors, can potentially disrupt critical infrastructure, undermine democratic processes, and destabilize the lives of everyday citizens.

Repeated incidents, such as the ones listed above, have proved that methods once considered secure protection are no longer as effective. It can be frustrating to come to terms with the fact that something that once was the best option is no longer working. Just as a star athlete might struggle and decline over time instead of retiring on a high note, standard security practices, such as virtual private networks (VPNs) and firewalls, face a similar fate.

Considering these outdated cybersecurity concerns on Earth, who’s to say space isn’t the next target? Outer space is becoming increasingly militarized, evident from instances such as the growing stockpile of anti-satellite weapons currently being held by different nation-states. These weapons have the potential to undermine the U.S. military from space.

National security in space has also become increasingly commercialized. 2024 was the year of the private space race, and commercial lunar landings conducted by private companies took center stage in the media. With space becoming a mainstream place for humans to frequent, from government-funded projects to celestial playgrounds for commercial lunar landings and things like space tourism, the U.S. and nations around the globe must acknowledge emerging cybersecurity threats and take proactive steps to address them.

Preventing breaches here, there, and anywhere

Cybersecurity breaches in space can be prevented effectively with the right measures, just as they can be on Earth. If both private and public organizations start now by establishing strong cybersecurity practices as they lay the groundwork for a new era, it will be easier to handle issues when they happen in the future.

Before we explore the technology that will protect cybersecurity practices in gravity-bound and zero-G environments, let’s first address what needs to be replaced.

As mentioned, VPNs and firewalls are outdated practices in the face of modern cyber threats and potentially irreversible damage to our world. Not even two months ago, Massachusetts faced a 911 outage that disrupted emergency services statewide. It jeopardized lives needlessly due to a significant cybersecurity oversight: an ineffective firewall. Hackers managed to bypass the firewall and exploit vulnerabilities in the system, prompting disbelief and questions from cyber experts around the U.S.

So, what’s the solution? Applying zero trust principles will be crucial for securing assets and operations on Earth and in space. Zero trust security is a network strategy that operates on the principle that no one should be trusted by default, and everyone attempting to access network resources must be verified. Instead of assuming everything within a network is protected, we must continuously verify every user, device, and system attempting to access critical assets.

For instance, spacecraft and satellites must authenticate each command and data transmission, ensuring only authorized personnel can interact with them. Similarly, ground control systems and space station operations would implement strict access controls and continuous monitoring to safeguard against potential breaches. In fact, the U.S. Space Force has already begun setting the tone for action by implementing zero trust security in its practices.

Charting the course ahead

The answer to a cyber environment in space is not written in the stars. No nation can alone address the multifaceted challenges of cyberspace and outer space. Safety and security will come from global collaboration efforts. It’s time for governments and organizations to work together to enhance space and cyber awareness and develop robust zero trust plans to prevent escalation in these domains.