Iranian Threat Actors Disrupt US Critical Infrastructure via Exposed PLCs
Attackers compromised Internet-facing OT devices and caused file and display manipulation, operational disruption, and financial losses across sectors.
Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.
Search across headline titles and summaries.
Weekly headline count for the current query.
Attackers compromised Internet-facing OT devices and caused file and display manipulation, operational disruption, and financial losses across sectors.
CISA has revealed Iranian attacks causing disruption and financial loss at US critical infrastructure firms
Iran-affiliated cyber actors are targeting internet-facing operational technology (OT) devices across critical infrastructures in the U.S., including programmable logic controllers (PLCs), cybersecurity and intelligence agencies warned Tuesday
CISA: Iran-Linked Groups Actively Exploiting OT Exposure Risks, PLC ProgrammersFederal agencies are warning that Iranian-linked actors have begun actively exploiting internet-facing PLCs and misconfigured OT systems across U.S. critical infrastructure, enabling network access, lateral movement and potential disruption amid rising geopolitical tensions.
Device Maker Is Still Investigating March 11 Attack Claimed by Iranian HacktivistsMedical tech maker Stryker said it has restored its systems and is operational across its global manufacturing network three weeks after a wiper attack by Iranian hacktivist group Handala led to a worldwide outage at the company. The firm is continuing to investigate the incident.
Medtech Maker Is Still Recovering While Iranian Hackers Threaten More Attack VictimsAs medtech maker Stryker continues working to restore global IT systems brought offline by a cyberattack last week, class action lawsuits against the company are piling up in federal court and the Iranian hackers claiming credit for the attack are warning of more assaults to come on other victims.
Medical Device Manufacturer Hack Was Likely OpportunisticAn Iranian cyberattack on medical device maker Stryker's internal IT environment does not appear to affect connected products used by the company's healthcare clients. But an outage of Stryker's electronic ordering system could lead to supply chain issues for its customers.
The Iranian cyberattack on Stryker is the kind of stress test that business continuity and disaster recovery programs often do not plan for.
Meanwhile, Verifone says 'no evidence' to support the digital intruders' claims A hacking crew with ties to Iran's intelligence agency claimed to be behind a global network outage at med-tech firm Stryker on Wednesday, and said the cyberattack was in response to the US-Israel airstrikes.…
Leading medical technology company Stryker has been hit by a wiper malware attack claimed by Handala, an Iranian-linked and pro-Palestinian hacktivist group. [...]
Also: Anthropic Claude Code Security Impact on AppSec, RSAC Conference PreviewIn this week's panel, four ISMG editors discuss the potential cyber spillover from escalating tensions in the Iran-Israel-U.S. conflict, the market disruption sparked by Anthropic's Claude Code Security launch and a preview of RSAC Conference 2026.
Iran and its supporters have taken to cyberspace to retaliate for US-Israeli military action, with an aim to cause economic and physical disruption.
Bank and crypto outfits hit after Israeli commander mentioned attacks expanding to ‘other areas’ The government of Iran appears to have shut down the internet within its borders, perhaps in response to Israel-linked cyberattacks.…
Iranian Officials Call Internet Outages Intentional to Disrupt Israeli OperationsIranian officials said widespread internet outages were deliberate and meant to disrupt covert Israeli operations within the country following days of missile attacks from Israel and a rapidly escalating regional conflict that experts warn could trigger major cyberattacks on critical infrastructure.
Disruption of Country's Biggest Bank Comes as Israel-Iran War IntensifiesA pro-Israel hacking group claims to have disrupted a major Iranian bank as hostilities between the two countries raged into their fifth day. Hacking group Gonjeshke said Tuesday morning it "conducted cyberattacks which destroyed the data of the Islamic Revolutionary Guard Corps' Bank Sepah."
WeRedEvils alleges successful attack on infrastructure, including data theft Israel-based hacktivists are taking credit for an ongoing internet outage in Iran.…
Iran has taken a page from the Russian playbook: Passing off military groups as civilians for the sake of PR and plausible deniability.
Iranian minister confirms cyber-attack was cause of widespread disruption at petrol stations
Iranian officials blame a software issue for the "disruption" to gasoline pumps.
The apparent pro-Iranian Cyber Avengers posted images of BAZAN Groups's SCADA systems, diagrams, and programmable logic controller (PLC) code.