Thales Records €25B Orders in 2024: The AI-Powered Defense Giant Reshaping Cybersecurity and Digital Sovereignty + Video

Listen to this Post

Featured Image

Introduction:

Thales, a global leader in defense, aerospace, and digital security, has announced record-breaking financial results for 2024, with order intake surpassing €25 billion for the second consecutive year and revenues exceeding €22 billion. This performance is not merely a financial milestone; it is a testament to the strategic integration of advanced technologies—particularly Artificial Intelligence (AI)—into critical infrastructure and national security frameworks. For cybersecurity and IT professionals, Thales’s trajectory underscores a critical pivot toward AI-driven security solutions, sovereign digital ecosystems, and the hardening of complex, large-scale systems against evolving cyber threats.

Learning Objectives:

  • Objective 1: Understand the strategic role of AI accelerators (like Thales’s cortAIx) in modern defense and cybersecurity postures.
  • Objective 2: Analyze the implications of major defense and aerospace consolidations on global cybersecurity supply chains.
  • Objective 3: Identify key technical trends in securing AI pipelines, cloud environments, and embedded systems within critical national infrastructure.

You Should Know:

  1. The Rise of AI Accelerators in Critical Infrastructure: cortAIx Deep Dive
    Thales’s success is heavily attributed to cortAIx, its artificial intelligence accelerator. This is not a single product but a horizontal strategy to embed AI across all its business lines—from fighter jet cockpits to cybersecurity operations centers. For a security engineer, this means understanding how AI is being integrated into “safety-critical” systems, where failure is not an option.

Step‑by‑step guide: Simulating a Basic AI Model Hardening for Edge Deployment
In a context like Thales’s work with Dassault Aviation, AI models must run on the edge (e.g., onboard a Rafale fighter jet) and be protected from adversarial attacks. Here’s a conceptual workflow for hardening a model using Python and basic command-line tools:

  1. Model Quantization (Linux): Reduce model size and latency for edge devices.
    Using TensorFlow Lite Converter (example)
    import tensorflow as tf
    converter = tf.lite.TFLiteConverter.from_saved_model(‘./saved_model’)
    converter.optimizations = [tf.lite.Optimize.DEFAULT]
    tflite_model = converter.convert()
    
  2. Adversarial Robustness Check: Use the Adversarial Robustness Toolbox (ART) to test the model against evasion attacks.
    pip install adversarial-robustness-toolbox
    

    Run a simple Fast Gradient Method (FGM) test in your Python script to ensure the model’s predictions don’t flip with minor input perturbations.

  3. Secure Enclave Deployment: Simulate deploying the model to a secure enclave using Intel SGX or AMD SEV. While you may not have the hardware, you can use the Gramine Library (formerly Graphene) to run unmodified applications in a secure context.
    On a Linux (Ubuntu 20.04+) system with SGX support
    sudo apt install libsgx-launch libsgx-urts
    Build and run your application within a SGX enclave using Gramine
    make SGX=1
    gramine-sgx ./your_ai_model
    

    What this does: It demonstrates the shift from simply developing AI to operationalizing and securing it for high-stakes environments, a core focus of cortAIx.

2. Securing the Digital Supply Chain in Mega-Mergers

The memorandum of understanding between Thales, Airbus, and Leonardo to create a European space champion has massive cybersecurity implications. Mergers in the space sector create a complex, expanded attack surface. Integrating disparate IT and Operational Technology (OT) environments is a security nightmare.

Step‑by‑step guide: Auditing and Hardening a Hybrid Cloud Infrastructure (AWS & Azure)
Imagine merging the cloud infrastructures of three giants. A security team must conduct a cross-provider audit.

1. Inventory All Assets (Linux/CLI):

Use the AWS CLI and Azure CLI to list all resources in scope.

 AWS: List all S3 buckets and EC2 instances across regions
aws s3 ls
aws ec2 describe-instances —region us-east-1 —query ‘Reservations[].Instances[].[InstanceId,State.Name]’ —output table

Azure: List all VMs and Storage Accounts
az vm list —output table
az storage account list —output table

2. Check for Misconfigurations (Windows/PowerShell):

Use Pester (testing framework) on a Windows management machine to validate security policies against a baseline (e.g., CIS Benchmarks).

Install-Module -Name Pester -Force
 Run a test against a specific security control, e.g., ensuring only HTTPS is allowed on storage accounts
Invoke-Pester -Script @{ Path = ‘.\CIS_Azure_Foundations.Tests.ps1’ }

3. Implement Single Sign-On (SSO) Federation:

During a merger, unifying identity management is critical. Configure Azure AD as a federated identity provider for AWS.
– Step A: In Azure AD, add the “AWS Single-Account Access” application from the gallery.
– Step B: Configure SAML-based sign-on.
– Step C: In the AWS console, create an IAM role and set Azure AD as the trusted entity.
– Step D: Map Azure AD attributes to AWS IAM roles for fine-grained access control.
What this does: This process prevents the “Shadow IT” and identity sprawl that plague corporate mergers, ensuring a “Zero Trust” posture is maintained across the newly formed entity.

  1. The Economics of Cyber Resilience: From Ransomware to National Defense
    Thales’s strong performance, including a near €2.6 billion cash flow, is partially fueled by the global demand for cybersecurity in an unstable geopolitical climate. Organizations are moving from basic security to “cyber resilience”—the ability to continue operations during an attack.

Step‑by‑step guide: Implementing an Immutable Backup Strategy (Linux)

To ensure resilience against ransomware that targets backups, Thales’s digital security solutions often advocate for immutability.

  1. Set up a Backup Server with Immutable Storage:
    Using Linux’s native `chattr` (change attribute) command to make files immutable.

    On your backup server (e.g., Ubuntu Server)
    BACKUP_DIR=”/backups/critical_data”
    mkdir -p $BACKUP_DIR
    
    Create a backup (e.g., of a MySQL database)
    mysqldump -u root -p —all-databases > $BACKUP_DIR/db_backup_$(date +%Y%m%d).sql
    
    Make the file IMMUTABLE - cannot be deleted, renamed, or overwritten even by root.
    sudo chattr +i $BACKUP_DIR/db_backup_.sql
    
    To verify the immutable flag
    lsattr $BACKUP_DIR/db_backup_.sql
    Output should show —i — indicating the immutable bit is set.
    

2. Network Segmentation (VLANs):

Ensure the backup server is on a separate, isolated VLAN with strict firewall rules (e.g., using `iptables` or nftables) that only allow inbound backup traffic from specific internal IPs on specific ports (e.g., 22 for rsync/SSH, 873 for rsync daemon).

 Example iptables rule to allow SSH only from a specific management subnet
iptables -A INPUT -p tcp —dport 22 -s 192.168.100.0/24 -j ACCEPT
iptables -A INPUT -p tcp —dport 22 -j DROP

What this does: It creates a “break glass” recovery option. Even if an attacker gains domain admin, they cannot delete or encrypt these backups without direct physical access to the server, guaranteeing business continuity.

  1. Securing Embedded Systems: The “Things” in the Internet of Things
    Thales is a leader in embedded systems (aerospace, naval). Securing these devices is fundamentally different from securing servers.

Step‑by‑step guide: Firmware Security Analysis (Linux)

Before deploying embedded systems (like those used by Thales), security teams must verify firmware integrity.

1. Extract Firmware:

Use `binwalk` (a tool for searching binary images for embedded files) on a Linux machine.

 Assuming you have a firmware image ‘firmware.bin’
binwalk -e firmware.bin
 This will extract the filesystem, often a squashfs or ubifs image.

2. Check for Hardcoded Credentials:

Use `grep` to search the extracted filesystem for common keywords.

cd _firmware.bin.extracted/
grep -r —include=”.conf” —include=”.c” —include=”.sh” “password” .
grep -r “123456” .

3. Analyze for Outdated Components:

Identify the versions of libraries used (e.g., OpenSSL, BusyBox). Check these versions against the CVE database.

strings ./squashfs-root/usr/lib/libssl.so | grep “OpenSSL”
 Output: OpenSSL 1.0.1t 3 May 2016 — This version is known to be vulnerable to Heartbleed.

What this does: It preemptively identifies supply chain risks in hardware before they are deployed in sensitive environments like satellites or warships, preventing remote exploitation.

What Undercode Say:

Thales’s 2024 results are a clear signal that the defense technology sector is now the primary driver for advanced AI and cybersecurity innovation. The convergence of AI, space, and digital security is creating a new class of complex, high-value targets that require a paradigm shift from reactive defense to proactive, AI-powered resilience. For professionals, the focus must move beyond standard IT security to embrace hardware-level security, AI model hardening, and the economics of protecting an entire nation’s critical infrastructure. The lines between corporate cybersecurity and national security are permanently blurred.

Prediction:

We will witness a rapid consolidation of the cybersecurity market as traditional defense primes (like Thales, Lockheed Martin) acquire niche AI-security startups to vertically integrate their capabilities. This will lead to a “two-speed” internet: one public, global network with standard security, and a separate, ultra-hardened, AI-governed digital infrastructure for government and defense, deepening the digital divide between civilian and sovereign networks. Expect regulatory frameworks (like the EU’s Cyber Resilience Act) to increasingly mandate the kind of embedded security Thales is pioneering.

▶️ Related Video (78% Match):

🎯Let’s Practice For Free:

IT/Security Reporter URL:

Reported By: Patrice Caine – Hackers Feeds
Extra Hub: Undercode MoN
Basic Verification: Pass ✅

🔐JOIN OUR CYBER WORLD [ CVE News • HackMonitor • UndercodeNews ]

💬 Whatsapp | 💬 Telegram

📢 Follow UndercodeTesting & Stay Tuned:

𝕏 formerly Twitter 🐦 | @ Threads | 🔗 Linkedin | 🦋BlueSky