Iranian Hackers Target U.S. Infrastructure, CISA Warns

U.S. cybersecurity and intelligence agencies are warning that Iranian hackers target U.S. critical infrastructure by exploiting outdated software, known vulnerabilities, and weak or default passwords. A joint advisory from CISA, the FBI, NSA, and DC3 urges heightened vigilance amid escalating tensions linked to the ongoing Iran-Israel conflict.

While no coordinated campaign has been detected, Iranian hackers target U.S. networks through industrial control systems exposed to the internet. Agencies recommend disconnecting these systems, applying security updates, using strong authentication, and enabling phishing-resistant multifactor authentication.

Between November 2023 and January 2024, Iranian-linked actors launched cyberattacks on Israeli-made systems, affecting U.S. sectors like water, energy, and healthcare. Their campaigns included website defacements, data theft, and hack-and-leak operations tied to regional protests.

The Department of Homeland Security warns that pro-Iranian hacktivists may escalate low-level attacks. U.S. officials remain potential targets amid elevated threats of extremist violence at home.

Read the full official advisory here:

CISA and U.S. Agencies warn of ongoing Iranian cyber threats to critical infrastructure