Because the US and Iran agreed to a ceasefire on Tuesday, six US federal companies have warned that Iran-affiliated risk actors have compromised internet-exposed programmable logic controllers at essential infrastructure amenities within the US.
The assaults, which the companies linked to escalating hostilities between Iran and the US and Israel, focused Rockwell Automation and Allen-Bradley PLCs at water and wastewater, vitality, and authorities amenities, together with native municipalities, and have been energetic since no less than March 2026, in keeping with the advisory, co-authored by the FBI, CISA, NSA, EPA, Division of Power, and US Cyber Command’s Cyber Nationwide Mission Power, and printed on Tuesday.
“Since no less than March 2026, the authoring companies recognized (by means of engagements with sufferer organizations) an Iranian-affiliated APT-group that disrupted the operate of PLCs,” the advisory stated. “These PLCs have been deployed throughout a number of US essential infrastructure sectors (together with Authorities Companies and Amenities, WWS, and Power sectors) inside all kinds of commercial automation processes. A number of the victims skilled operational disruption and monetary loss.”
