April 7, ‘26 “Iranian-Affiliated Cyber Actors exploit Programmable LogicControllers Across US Critical Infrastructure”
Federal Bureau of Investigation, Cybersecurity and Infrastructure Security Agency, National Security Agency, Environmental Protection Agency, Department of Energy, United States Cyber Command – Cyber National Mission Force
exec. summary
Iran-affiliated advanced persistent threat (APT) actors are conducting exploitation activity targeting internet-facing operational technology (OT) devices, including programmable logic controllers (PLCs) manufactured by Rockwell Automation/Allen-Bradley
This activity has led to PLC disruptions across several U.S. critical infrastructure sectors through malicious interactions with the project file and manipulation of data on human machine interface (HMI) and supervisory control and data acquisition (SCADA) displays, resulting in operational disruption and financial loss.
U.S. organizations should urgently review the tactics, techniques, and procedures (TTPs) and indicators of compromise (IOCs) in this advisory for indications of current or historical activity on their networks, and apply the recommendations listed in the Mitigations section of this advisory to reduce the risk of compromise.
full report /link in comments
Guess I'll copy paste my comment from earlier - https://greatawakening.win/p/1ASsrv5lPU/x/c/4ebo00PGzTi?d=50
Gee golly no way, ya don't say! willickers, Batman. So converting physical, tangible systems into digital remotely-accessible virtual systems makes them MORE VULNERABLE?! WOW I NEVER WOULD HAVE GUESSED THAT
Now do public infrastructure... and your washing machine! DUMBASS
Mod me up scotttttttttyyyyyy, this one's getting stuck!
Just had another thought. Everyones all worried about super AI cyber attacks crippling the grid and stuff. How about... now hear me out lads, this one might sound real crazy... how's about we just, kinda sorta like disconnect the grid from the internet all together? Yeah you know, some of that good ol' fashioned valves and buttons stuff... ye know, like a human has to go touch stuff to control critical infrastructure? omg I know, so radical. But what exactly could the chinese super AI (or Iranian hackers) do if nothing's connected to it? Ok they might be able to hack TikTok and Youtube. Shit, that might cause enough chaos to head for the bunkers, yeah?
Online banking... so stupid
Buy some stock in Filing Cabinet manufacturers, I think paper records will make a come back.
I would agree that “fear” is not necessary, & my viewpoint is upgraded with your comments, thanks!
Not being a cyber security & tech expert, from what I read there are real threats, & Iran is part of the global election steals.
My angle here is purely that there are real threats, and that in upcoming news cycle we can expect to hear more about Iran.
https://www.csis.org/analysis/iranian-cyber-threat-us-critical-infrastructure
https://www.cybersecuritydive.com/news/iran-nexus-threat-groups-refine-attacks-against-critical-infrastructure/818299/
https://www.csis.org/analysis/iranian-cyber-threat-us-critical-infrastructure
Forcing an operational technology (OT) device offline is a physical threat. As documented in the April 2026 CISA PLCs Advisory, Iranian-affiliated groups have achieved real-world impact
Alls I'm saying is that it's utterly stupid to have critical infrastructure connected to the internet. That should be handled in-house at the water plants, power plants, nuclear plants and so on, and I am extending my ridicule all the way down to the household level, where anything and everything is being shipped out with a WiFi module in it.
My laundry doesn't need to check the weather, and I don't need an app on my phone to tell me when it's finished washing, or to tell potential burgelers when I'm home washing whites.
thanks for clarification, 100% agree, no need for all that wifi module stuff!
and my based friends’ dogs are good alarms in case of burglars
I'm totally with you on this.
I heard a while back that that particular threat was addressed and not really a big worry.
that would be good news if Iranian hackers are neutralized, other reporting indicates ongoing threats https://ktslaw.com/en/insights/alert/2026/5/what%20the%20iran%20conflict%20means%20for%20critical%20infrastructure%20operators%20cyber%20and%20legal%20risk
https://www.ic3.gov/CSA/2026/260407.pdf
CSIS report on the Iran cyber /infrastructure threat https://www.csis.org/analysis/iranian-cyber-threat-us-critical-infrastructure
“The actors thought to be behind these incidents are the “CyberAv3ngers” group, which presents itself as a “hacktivist” group, but is in fact thought to be an advanced persistent threat associated with the Islamic Revolutionary Guard Corps’ Cyber Electronic Command. This group has a history of over-inflating its attacks and their impact, to sow discord as their primary objective. In this instance, the cyber incidents themselves were unlikely to have been especially sophisticated….”
examples of Iranian attacks going back to 2013
“Iran has a long history of targeting these sectors and of hacking into operational technology in the United States and other countries’ infrastructure. This history goes as far back as 2013, when Iranian hackers accessed the systems of a small dam outside New York City (though with minimal operational impact), and also accessed the systems and data of Calpine Corporation, one of California’s largest power producers.”
Hence the USA cyberstrategy for protecting America March 2026 https://www.whitehouse.gov/wp-content/uploads/2026/03/president-trumps-cyber-strategy-for-america.pdf
of possible interest, IC3 China threats report June 2, ‘26. https://www.ic3.gov/CSA/2026/260603.pdf