Federal agencies have issued warnings about Iranian government-affiliated hackers targeting industrial control systems, particularly at water treatment plants and other critical infrastructure. The threats are prompted by current geopolitical tensions and focus on systems manufactured by Israeli firms. In a recent operation, hackers compromised multiple devices at US water facilities, notably targeting programmable-logic controllers that automate processes within these plants. The intruders not only disrupted device functionality but also implemented changes that hindered remote access by administrators, raising significant cybersecurity concerns within the defense industrial base.
Based on the current geopolitical environment, Iranian-affiliated cyber actors may target US devices and networks for near-term cyber operations. Defense Industrial Base (DIB) companies, particularly those possessing holdings or relationships with Israeli research and defense firms, are at increased risk.
Of particular interest to the would-be hackers are control systems that automate industrial processes inside water treatment plants, dams, and other critical infrastructure, particularly when those systems are manufactured by Israel-based companies.
Between November 2023 and January 2024, hackers affiliated with the Iranian Islamic Revolutionary Guard Corps actively targeted and compromised Israeli-made programmable-logic controllers and human-machine interfaces used in multiple sectors, including US Water and Wastewater Systems Facilities.
After gaining control of the devices, the hackers interfered with their ability to function normally. The actors also introduced changes that prevented the devices from being remotely accessed by administrators.
Collection
[
|
...
]