According to Science.org, since the beginning of August, a “network incident” has disrupted operations at the NSF (National Science Foundation) center, which coordinates international telescopes.
The attacks disconnected telescopes in Hawaii and Chile, preventing scientists from conducting research during critical observation periods.
Multiple Telescopes Cease Operations
The Gemini North Telescope at the Gemini Observatory in Hawaii ceased operations following a reported “network incident” – (Photo: NOIRLAB)
The ground-based astronomy coordination center operated by NSF, known as NOIRLab, reported the cyberattack on August 1. The Gemini North Telescope in Hilo, Hawaii, operated by the International Gemini Observatory, was the first affected instrument.
Thanks to the swift response of the NOIRLab cybersecurity team and the observing groups, the Gemini Observatory did not suffer physical damage. However, the incident forced both the Gemini North and Gemini South telescopes (located on Cerro Pachón in Chile) to halt operations.
NOIRLab’s computer systems allow astronomers to remotely operate various ground-based telescopes.
However, on August 9, NOIRLab had to disconnect its computer network from several observatories in Chile, affecting a series of telescopes.
This led researchers to miss important observational opportunities, impacting international projects, doctoral theses, and ongoing research.
Two Weeks Without Resolution
Cybersecurity experts are puzzled as to why telescopes became the target of this attack.
Von Welch, the retired head of the NSF Cybersecurity Center of Excellence, speculated that the attacker may not have realized they were targeting an astronomical observatory.
However, postdoctoral astronomy researcher Luis Welbanks at Arizona State University emphasized that this incident poses challenges for astronomers.
According to astronomer Gautham Narayan at the University of Illinois Urbana-Champaign, this serves as another wake-up call for the astronomy community.
The longer the telescopes remain inactive, the more the astronomy community worries about the future of their projects.
NOIRLab declined to answer questions from Science regarding whether the incident was a ransomware attack, in which hackers demand payment to restore information or regain control of the facilities.
A spokesperson for NOIRLab only mentioned to Science that the center’s IT staff are “working around the clock to get the telescopes back in the sky.”
