Iran-linked hackers have intensified cyber attacks on critical US infrastructure by exploiting vulnerabilities in industrial control systems, particularly programmable logic controllers (PLCs), according to recent reports. Experts say these devices—used in sectors such as water, energy and municipal services—were improperly connected to the internet, violating a basic security rule that requires them to remain “air-gapped” and isolated from networks.
The breaches allowed attackers to access and manipulate operational technology, causing disruptions and financial losses in some cases. US agencies, including the FBI and CISA, warned that multiple sectors have been targeted as part of a broader campaign aimed at creating disruptive effects across the country.
The incidents highlight growing cyber risks amid geopolitical tensions, with officials urging stronger safeguards to protect critical infrastructure systems from further attacks.
