US space technology and satellite giant Maxar has confirmed a data breach involving the personal information of its employees, according to a filing with state regulators.
Colorado-based Maxar operates imaging satellites and builds spacecraft, and claims to operate one of the largest constellations of commercial satellites in orbit. Maxar has long been a key provider of commercial satellite imagery to the U.S. government, which uses imagery for mission-critical planning, intelligence gathering, and disaster response.
In a mandatory data breach notification filed with the California Attorney General last week, Maxar said hackers using a Hong Kong-based IP address breached its network on Oct. 4, resulting in employees' personal data being stolen. He said he accessed files containing . It is not yet known whether the alleged hacker is located in Hong Kong or whether he used a Hong Kong server to hide his real location.
Maxar said it discovered the breach a week later, on Oct. 11, and took “immediate action” to prevent further unauthorized access to its systems. “Nevertheless, our investigation indicates that the hackers likely had access to files on the system for approximately one week before this action was taken,” Maxar said in a disclosure statement.
Maxar said the information contained in the compromised files includes employees' names, genders, addresses, social security numbers, company contact information, employment status, employee numbers, and job information.
Maxar has 2,600 employees, more than half of whom hold U.S. security clearances, according to the company's website. They are required to carry out sensitive U.S. government missions, including national security missions.
Maxar, which completed a $6.4 billion sale to private equity giant Advent International last year, did not say how many employees were affected by the breach.
Maxar spokesperson Kristin Carringer did not immediately respond to TechCrunch's questions.