Hackers affiliated with the Iranian government have launched attacks targeting US critical infrastructure, disrupting operations and causing financial losses, according to a joint advisory from six federal agencies. The FBI, Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), Environmental Protection Agency (EPA), Department of Energy (DOE), and US Cyber Command issued the urgent warning on Tuesday.
Targeted Infrastructure
The hackers are focusing on programmable logic controllers (PLCs), critical devices used in factories, water treatment centers, oil refineries, and other industrial settings. These PLCs act as interfaces between automation computers and physical machinery, often located in remote areas.
"Since at least March 2026, the authoring agencies identified (through engagements with victim organizations) an Iranian-affiliated APT-group that disrupted the function of PLCs," the advisory stated.
Impact on US Operations
The attacks have affected multiple sectors, including Government Services and Facilities, Waste Water Systems (WWS), and Energy. Some victims reported operational disruptions and significant financial losses. The advisory highlights the ongoing threat posed by Iranian-backed hackers to US sovereignty and economic stability.
This breach underscores the need for robust cybersecurity measures to protect critical domestic infrastructure from foreign interference. The Biden administration faces mounting pressure to address these vulnerabilities and safeguard American workers and industries.