Threat actors may find and target various backdoors, or inject their own, within the victim ground station provider in the hopes of maintaining their attack.
This type of attack technique cannot be easily mitigated with preventive controls since it is based on the abuse of system features.