| ID | Name |
|---|---|
| ATAGS-T1054.001 | Bootkit |
| ATAGS-T1054.002 | Ransomware |
| ATAGS-T1054.003 | Rootkit |
| ATAGS-T1054.004 | Wiper Malware |
Threat actors may encrypt spacecraft data to interrupt availability and usability. Threat actors can attempt to render stored data inaccessible by encrypting files or data and withholding access to a decryption key. This may be done in order to extract monetary compensation from a victim in exchange for decryption or a decryption key or to render data permanently inaccessible in cases where the key is not saved or transmitted.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.