Those birds are probably still in the air. Few comm satellites are full processing anyway so there is no mechanism to enforce it up in the sky. Normal enforcement is via having the cops show up at your door and ask why you are stealing the US Government's power and interfering with military operations.
Probably not. Security is full of the "We're Compliant" types (don't we have insurance for that?) and very few real technologists who know how to hack/break/abuse systems. Target was PCI compliant when their CC data was breached and exposed. There are many more examples of this. Check the box, get owned and no really cares. That needs to change.
