Maxar Technologies Confirms Data Breach, Employee Data Stolen
The American satellite manufacturer Maxar Technologies has confirmed a data breach compromising the personal information of its employees. The company reported the incident to U.S. government authorities.
Maxar operates one of the largest commercial satellite constellations and specializes in the production of spacecraft. For years, it has been a pivotal provider of satellite imagery for the U.S. government, leveraging this data for intelligence, operational planning, and disaster response.
On October 4, a malicious actor using an IP address registered in Hong Kong infiltrated Maxar’s network, gaining access to files containing employee personal data. The hacker’s precise location remains unidentified, as the server employed could mask their true whereabouts.
The breach was discovered by Maxar on October 11, prompting swift measures to prevent further unauthorized access. However, an internal investigation revealed that the hacker had access to the data for a week prior to the system being secured.
The compromised employee information includes:
- Names;
- Gender;
- Addresses;
- Social Security Numbers (SSN);
- Contact details;
- Job titles;
- Employment status;
- Supervisor contacts;
- Company branch affiliations;
- Personal employee numbers.
The company clarified that no bank account details were disclosed as a result of the breach. Nonetheless, active employees affected by the incident are being offered identity protection services and credit monitoring, while former employees have until mid-February 2025 to enroll in identity theft protection services.
According to Maxar’s official website, the company employs 2,600 people, over half of whom have access to classified information crucial for fulfilling national security objectives in the United States. It is unclear whether this incident is connected to a previous claim made in July by a cybercriminal, who alleged they had obtained the user database of GeoHIVE, Maxar Technologies’ geospatial intelligence platform.
Details on the exact number of affected employees and whether classified data was compromised have not yet been disclosed. Maxar, which was acquired by the investment firm Advent International for $6.4 billion last year, has yet to provide further comment on the matter.
