1. Forum
  2. FidoNet
  3. CONSPRCY

  • US warns Iranian hackers

    From Mike Powell@1:2320/107 to All on Thursday, April 09, 2026 09:49:05
    US agencies warn Iranian hackers are targeting American critical
    infrastructure causing 'disruptive effects within the United States'

    Date:
    Wed, 08 Apr 2026 14:25:00 +0000

    Description:
    Iran war spills into US cyberspace, affecting critical infrastructure organizations.

    FULL STORY
    Major US agencies, including the FBI, CISA,
    NSA, and others, have released a joint security advisory warning critical infrastructure organizations in the country about ongoing Iranian attacks against their endpoints.

    The agencies said an Iranian-affiliated threat actor is currently trying to exploit internet-connected operational technology devices (OT), including Rockwell Automation/Allen-Bradley-manufactured programmable logic controllers (PLCs), with the intent to cause disruptions. As a result of this activity, organizations from multiple US critical infrastructure sectors experienced disruptions through malicious interactions with the project files and the manipulation of data displayed on human machine interface (HMI) and
    supervisory control and data acquisition (SCADA) displays, the advisory
    reads. In a few cases, this activity has resulted in operational disruption
    and financial loss.

    The advisory did not say which organizations experienced these disruptions
    and financial loss, but it did say Government Services and Facilities (to include local municipalities), Water and Wastewater Systems (WWS), and Energy Sectors, were among the targets.

    In its writeup, The Record says a water treatment plant in Minot, North
    Dakota, reported a ransomware attack last week. While the publication hinted the two incidents might be connected, there is no confirmation yet, and no groups have taken responsibility for the incident.

    The attacks started in March 2026 and are most likely in response to the military conflict currently taking place in Iran.

    US and Israeli forces targeted, among other things, Iranian critical infrastructure such as nuclear facilities, petrochemical plants and
    industrial sites, and railways and bridges.

    The authoring agencies did not name the group conducting these attacks but stressed that they previously reported on similar activity from a group
    called CyberAv3ngers (AKA Shahid Kaveh Group). This group is allegedly affiliated with Irans Islamic Revolutionary Guard Corps (IRGC) Cyber
    Electronic Command (CEC).

    Link to news story: https://www.techradar.com/pro/security/us-agencies-warn-iranian-hackers-are-ta rgeting-american-critical-infrastructure-causing-disruptive-effects-within-the -united-states

    $$
    --- SBBSecho 3.28-Linux
    * Origin: Capitol City Online (1:2320/107)