Iranian hackers launching disruptive attacks at U.S. energy, water targets, feds warn

Iranian state-sponsored hackers are executing disruptive cyberattacks against US energy and water infrastructure targets, according to a joint alert issued by multiple US government agencies¹. These attacks, which have resulted in harm to victims over the past month, are focused on devices and systems that control industrial processes, such as Programmable Logic Controllers (PLCs) and Supervisory Control and Data Acquisition (SCADA) systems. The warning comes on the heels of US-Israel strikes against Iran, suggesting a potential escalation of geopolitical tensions in the cyber domain. The involvement of Iranian government hackers shifts the threat model from traditional criminal activity to state-aligned operations, requiring a distinct response strategy. This development matters to cybersecurity practitioners because it signals a change in the threat landscape, necessitating a revised approach to defending critical infrastructure against nation-state actors.