Cyber Threat from Iranian Hackers Intensifies Against US Infrastructure

U.S. authorities have raised concerns over a surge in cyberattacks by Iranian-linked hackers targeting critical infrastructure, warning that the activity has intensified since the start of the ongoing conflict.

In a joint advisory, agencies including the Federal Bureau of Investigation, National Security Agency, and Cybersecurity and Infrastructure Security Agency said the attackers are focusing on systems used across multiple essential sectors.

The hackers are reportedly exploiting publicly accessible industrial control systems, including programmable logic controllers (PLCs) and supervisory control and data acquisition (SCADA) interfaces—tools commonly used to monitor and manage infrastructure operations.

According to the advisory, these systems play a crucial role in controlling equipment tied to vital services. Officials warned that the attackers appear intent on causing disruptive impacts within the United States, with some incidents already leading to operational disruptions and financial losses.

In certain cases, hackers manipulated system data to alter displayed information while also extracting sensitive project data from affected devices.

The campaign has targeted organizations across several sectors, including government services, water and wastewater systems, and energy, though specific entities were not named.

The advisory was jointly issued by multiple federal bodies, including the Department of Energy, the Environmental Protection Agency, and US Cyber Command’s Cyber National Mission Force. The FBI declined to provide further comment.