WASHINGTON, D.C. –Bipartisan legislation authored by U.S. Senator Gary Peters (MI) that would require the Cybersecurity and Infrastructure Security Agency (CISA) to help protect commercial satellite owners and operators from disruptive cyber-attacks has advanced in the Senate. Commercial satellites provide data and information used for navigation, agriculture, technology development, scientific research, and more. Critical infrastructure systems involved in operating networks that control pipelines, water, and electric utilities are also heavily reliant on commercial satellites. Peters’ legislation would help ensure these systems are secure from cyber-attacks that could significantly impact services that are essential to our national and economic security.The bill was advanced by the Senate Homeland Security and Governmental Affairs Committee, where Peters serves as Chair. It now moves to the full Senate for consideration.
“Cybercriminalswill stop at nothing to disrupt American lives and livelihoods, and an attack on commercial satellites could have devastating implications.That’s whywemust ensure companies that operate commercial satellites have the proper resources toprevent disruptive cyber-attacks,”said Senator Peters. “My bipartisan bill will help ensure that commercial satellite owners and operatorshave the necessary tools and resourcesto protect their networks.”
Experts have shown increasing concern that commercial satellite hacks could have dire economic and security consequences. The Department of Defense has also raised concerns about this threat and recently sponsored a competition for white hat hackers to attempt breaching an active satellite. Last year, it was reported that the Russian government was behind a cyber-attack on an American-based satellite company, which provides broadband services to Europe, in order to disrupt Ukrainian military communications at start of the invasion. As commercial satellites become more pervasive, hackers could shut satellites down, denying access to their service, or jam signals to disrupt electric grids, water networks, transportation systems, and other critical infrastructure. Peters’ legislation will ensure the United States is prepared to address these threats as malicious hackers increasingly target commercial satellite systems.
The Satellite Cybersecurity Act will require CISA to consolidate voluntary satellite cybersecurity recommendations – including guidance specifically for small businesses – to help companies understand how to best secure their systems. Additionally, the bill requires CISA to develop a publicly available, online resource to ensure companies can easily access satellite-specific cybersecurity resources and recommendations to secure their networks. The legislation will also require the Government Accountability Office to perform a study on how the federal government supports commercial satellite industry cybersecurity. It will ensure a better understanding of how network vulnerabilities in commercial satellites could impact critical infrastructure. Finally, the bill also requires the National Cyber Director and the National Space Council to develop a strategy to increase coordination across the federal government to address cybersecurity threats to these systems.
As Chairman of the Homeland Security and Governmental Affairs Committee, Peters has led efforts to ensure our nation is better prepared to defend against cyber-attacks. His historic, bipartisan provision to require critical infrastructure owners and operators to report to CISA if they experience a substantial cyber-attack or if they make a ransomware payment was signed into law. Peters’ bipartisan bill to enhance cybersecurity assistance to K-12 educational institutions across the country was also signed into law. Peters’ bipartisan bills to bolster cybersecurity for state and local governments, strengthen the federal cybersecurity workforce, and help secure federal information technology supply chains have been signed into law.
###