As global dependence on satellites grows, so too does the cyber risk. Nearly 240 cyberattacks have targeted the space sector in the past two years alone, according to the Centre for Security Studies in Zurich, highlighting escalating threats to space-based systems and critical infrastructure.
In response to this emerging form of “space terrorism”, researchers at the University of South Australia (UniSA) have developed a gamified decision-making tool designed to strengthen the cyber resilience of satellite cyber supply chains. The new approach gives defenders a safe, realistic environment to practise anticipating, withstanding and recovering from attacks that could disrupt essential global services.
UniSA researchers Mona Kriesten, Dr Mamello Thinyane and Dr David Ormrod have adapted game design techniques to improve how security teams use cyber threat intelligence (CTI). While CTI is widely used to triage incidents, the team argues its greatest value lies in enabling proactive defence, particularly in satellite ecosystems where early detection and rapid reaction are critical.
Kriesten, a cyber security practitioner and PhD candidate, says organisations often struggle to turn intelligence into timely action. “Gamification gives security teams a safe, engaging environment to practise making decisions under pressure, using CTI to guide their responses.”
The scenario is built around real-world attack patterns, including the SolarWinds supply chain compromise and the ViaSat satellite modem disruption in Ukraine. Players receive different forms of CTI – strategic, operational and tactical – and must interpret the intelligence to make decisions throughout the attack lifecycle. Their choices shape how well the simulated system anticipates, avoids, withstands, recovers from and evolves after the threat.
The team used an iterative, expert-informed design process that incorporated feedback from cybersecurity professionals, CTI analysts, space systems engineers and game designers. This human-centred approach refined everything from narrative structure to the realism of intelligence cues.
The result is a decision-making tool that can highlight skill gaps, test response strategies and deepen understanding of vulnerabilities across the increasingly complex satellite cyber supply chain.
UniSA Optus Chair in Cybersecurity, Associate Professor Mamello Thinyane, says the human factor remains a critical but often overlooked element in resilience. “Technology can only take us so far. Ultimately, people make the decisions that determine whether a system withstands an attack. Gamification offers a low-risk method to strengthen those human capabilities.”
To support the project, the researchers developed a new Cyber Resilience Lifecycle tailored to CTI-informed defence. It defines six phases and shows how intelligence should guide decision-making throughout. “The lifecycle prompts players to recognise what good decision making looks like in each phase,” Kriesten says.
The team sees strong potential for broader use, including multi-player simulations, new attack scenarios and improved CTI quality models.
Assoc Prof Thinyane says the timing is crucial. “As more nations and private companies expand into space, the attack surface increases. Strengthening cyber resilience is essential to protecting not only commercial interests, but also national security and public services.”
The work is among the first globally to apply gamification specifically to CTI within satellite cyber supply chains. The paper, “Leveraging gamification for cyber threat intelligence for resilience in satellite supply chains”, was presented at the 23rd European Conference on Cyber Warfare and Security in Finland.
