A recent cyberattack targeting Maxar Space Systems has compromised sensitive personal information of employees, as revealed in a filing with the California Attorney General.
The breach, attributed to a Hong Kong-based IP address, underscores growing cybersecurity concerns in the aerospace industry.
Hacker Lurked for a Week
The intrusion began in early October 2024, with the threat actor operating undetected for a week. Discovered on October 11, the hacker was promptly removed from the company’s systems.
During this time, sensitive employee data was exfiltrated, raising concerns about potential identity theft and other cyber risks.
Data Compromised in the Breach
Stolen information includes employee names, postal addresses, Social Security Numbers (SSNs), business contact details, gender, job-related information, and employment history.
Key details such as hire dates, job titles, supervisor information, and even termination dates in some cases were also exposed.
Fortunately, bank account details and birth dates were not part of the stolen data. However, experts warn that the data collected could still enable phishing attacks, identity theft, wire fraud, and other cybercrimes.
Maxar’s Response to the Incident
Maxar has taken swift action to address the breach. The company has informed law enforcement agencies and offered affected individuals a year of identity theft protection and credit monitoring services through IDShield and IDX.
In a breach notification letter, Maxar emphasized the importance of vigilance, encouraging employees to report any suspected identity theft to law enforcement immediately.
Why This Breach Matters
Maxar Space Systems, a division of Maxar Technologies, designs and manufactures advanced satellite systems and space-based solutions for commercial and governmental applications.
Of its approximately 2,600 employees, more than half hold U.S. security clearances, enabling them to work on sensitive government contracts.
While this incident did not affect Maxar Technologies’ broader operations in geospatial data and analytics, the exposure of employee details remains a serious concern for a company so closely tied to defense and intelligence industries.
Proactive Steps Moving Forward
The breach serves as a stark reminder of the persistent cyber threats facing companies in the tech and aerospace sectors.
Experts recommend organizations regularly update security protocols, monitor for unauthorized access, and provide robust training for employees to recognize potential cyber threats.
What Employees Should Do
If you are a Maxar employee or former employee affected by this breach:
- Enroll in Identity Protection Services: Use the services offered by Maxar to monitor credit activity.
- Stay Vigilant: Watch for phishing attempts or unusual activity in your accounts.
- Report Issues Promptly: Notify law enforcement of suspected identity theft or fraud.
This breach highlights the importance of robust cybersecurity in protecting not just corporate data but also the personal information of employees.