Explore

Rapid Read Rapid Read
Iran-Backed Hackers Target U.S. Critical Infrastructure via Internet-Facing OT Assets

Iran-Backed Hackers Target U.S. Critical Infrastructure via Internet-Facing OT Assets

Iranian-affiliated hackers have been targeting U.S. critical national infrastructure (CNI) providers, causing operational disruptions and financial losses. The Cybersecurity and Infrastructure Security Agency (CISA) issued an advisory detailing the attacks on internet-facing operational technology (OT) assets, including programmable logic controllers (PLCs) from Rockwell Automation/Allen-Bradley. The sectors affected include government services, water and wastewater systems, and energy. The hackers have been manipulating data on HMI and SCADA displays, using configuration software to create connections to targeted PLCs.
Rapid Read Rapid Read
Iran-Linked Cyberattacks Disrupt U.S. Critical Infrastructure

Iran-Linked Cyberattacks Disrupt U.S. Critical Infrastructure

Six U.S. federal agencies have warned of cyberattacks by Iran-affiliated threat actors targeting programmable logic controllers at critical infrastructure sites. These attacks have affected water, wastewater, energy, and government facilities, causing operational disruptions and financial losses. The advisory links the attacks to escalating hostilities between Iran, the U.S., and Israel, and highlights the need for organizations to review their cybersecurity measures.
Rapid Read Rapid Read
US Authorities Warn of Iranian Hackers Targeting Critical Infrastructure

US Authorities Warn of Iranian Hackers Targeting Critical Infrastructure

On April 7, 2026, several U.S. government agencies issued a joint warning about Iranian-backed hacker groups escalating their tactics to sabotage critical U.S. infrastructure systems. The primary targets include sectors essential to daily life, such as water supply, wastewater treatment plants, energy facilities, and local government facilities. These attacks exploit vulnerabilities in Programmable Logic Controllers (PLCs) and SCADA systems, particularly those from Rockwell Automation/Allen-Bradley. The Iranian government-backed group 'Handala' has been identified as a key perpetrator, having infiltrated networks of major companies like Stryker to erase data remotely. The hackers are reportedly using legitimate engineering software to gain access and have installed SSH software to maintain remote control.
Rapid Read Rapid Read
Hacker Targets Chinese Supercomputer, Offers Stolen Data for Sale

Hacker Targets Chinese Supercomputer, Offers Stolen Data for Sale

A hacker group known as FlamingChina has reportedly breached the National Supercomputing Center (NSCC) in Tianjin, China, stealing a vast amount of sensitive data. The stolen information includes research across various fields such as aerospace engineering, military research, and bioinformatics. The group has posted samples of the data on Telegram, claiming it contains valuable intelligence. Cybersecurity experts suggest that the dataset's size and content make it attractive to adversarial state intelligence services. The breach raises concerns about cybersecurity vulnerabilities and the potential for sensitive information to be exploited by foreign governments.
Rapid Read Rapid Read
Iranian Hackers Escalate Attacks on US Critical Infrastructure Amid Hostilities

Iranian Hackers Escalate Attacks on US Critical Infrastructure Amid Hostilities

Iranian hacking campaigns have intensified against US critical infrastructure sectors, including government services, water systems, and energy facilities. According to a joint advisory from US cybersecurity, law enforcement, and intelligence agencies, these hackers are targeting programmable logic controllers and supervisory control and data acquisition displays. The aim is to cause disruptive effects within the United States, with some activities already resulting in operational disruptions and financial losses. This escalation coincides with heightened tensions between the US and Iran, as President Trump warned of severe consequences if Iran does not reach a deal with the US.
Trendline Trendline
Teneo Appoints Serdar Cabuk to Enhance Global Cybersecurity Advisory Services

Teneo Appoints Serdar Cabuk to Enhance Global Cybersecurity Advisory Services

Teneo Appoints Serdar Cabuk to Enhance Global Cybersecurity Advisory Services
Rapid Read Rapid Read
Iran-linked Hackers Disrupt US Industrial Sites Amid Escalating Cyberattacks

Iran-linked Hackers Disrupt US Industrial Sites Amid Escalating Cyberattacks

Iran-linked hackers have successfully targeted and disrupted operations at multiple US industrial sites, including oil, gas, and water facilities. This marks an escalation in cyberattacks from Tehran since the onset of the US-Israeli conflict with Iran. The attacks have forced some sites to operate manually, leading to financial losses. The hackers have attempted to use destructive malware to delete data, although the success of these attempts remains unclear. The FBI and the Department of Homeland Security have issued urgent warnings to US critical infrastructure firms about these ongoing threats, which aim to cause disruptive effects within the United States.
Rapid Read Rapid Read
Iran-Backed Hackers Target US Critical Infrastructure, Disrupt Operations

Iran-Backed Hackers Target US Critical Infrastructure, Disrupt Operations

Iranian-affiliated hackers have been targeting US critical national infrastructure (CNI) providers, causing operational disruptions and financial losses. According to a Cybersecurity and Infrastructure Security Agency (CISA) advisory, these threat actors have been focusing on internet-facing operational technology (OT) assets, including programmable logic controllers (PLCs) from Rockwell Automation/Allen-Bradley. The sectors affected include government services, water and wastewater systems, and energy. The hackers have been manipulating data on human-machine interface (HMI) and supervisory control and data acquisition (SCADA) displays. They use configuration software to establish connections to targeted PLCs via overseas IP addresses. CISA has urged US organizations to review tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) to mitigate risks.
Reuters Reuters
Iranian hackers' targeting of US critical infrastructure has escalated since start of war, US says

Iranian hackers' targeting of US critical infrastructure has escalated since start of war, US says

By AJ Vicens April 7 (Reuters) - Iranian hacking campaigns targeting equipment used across multiple U.S. critical infrastructure sectors are escalating in response to hostilities, U.S. cybersecurity, law enforcement and intelligence agencies said on Tuesday.
Rapid Read Rapid Read
White House Cyber Strategy Prioritizes Offensive Measures Amid Rising Threats

White House Cyber Strategy Prioritizes Offensive Measures Amid Rising Threats

The White House has released a new cyber strategy that emphasizes proactive or offensive cybersecurity measures as a top priority. This shift comes in response to a rapidly evolving threat environment characterized by faster, more coordinated, and increasingly automated cyber threats. Traditionally, cybersecurity has relied on a reactive model, focusing on detecting intrusions, patching vulnerabilities, and responding to incidents. However, this approach is under pressure as cyber threats become more sophisticated. At the recent RSA Conference, Sandra Joyce from Google's Threat Intelligence Group introduced a threat disruption unit aimed at actively thwarting cyber threat groups using legal and technical capabilities. These developments highlight a significant shift from defensive to offensive cybersecurity strategies.
Reuters Reuters
US soldier's wife freed from ICE detention as deportation attempt continues

US soldier's wife freed from ICE detention as deportation attempt continues

By Kanishka Singh WASHINGTON, April 7 (Reuters) - A U.S. soldier's wife who was detained by the Immigration and Customs Enforcement agency last week was released from detention on Tuesday while President Donald Trump's administration attempts to deport her from the country. The U.S.
Rapid Read Rapid Read
U.S. Cybersecurity Strategy Shifts to Proactive Defense Amid Rising Threats

U.S. Cybersecurity Strategy Shifts to Proactive Defense Amid Rising Threats

The U.S. government is transitioning from a reactive cybersecurity model to a proactive approach, aiming to disrupt cyber threats before they reach their targets. This shift is highlighted by the White House's new cyber strategy, which prioritizes offensive cybersecurity measures. Major technology companies, such as Google, are investing in capabilities to actively thwart cyber threats. This change comes as traditional defensive models struggle to keep pace with increasingly sophisticated and automated cyber threats.