comscore
हिंदी
  • Home
  • News
  • Iranian hackers hit US industrial systems, cause disruptions: ALL you need to know

Iranian hackers hit US industrial systems, cause disruptions: ALL you need to know

Iran-linked hackers are targeting US industrial systems like PLCs, which is causing disruptions in critical sectors. Agencies warn organisations to secure exposed infrastructure and monitor unusual activity.

Edited By: Divya | Published By: Divya | Published: Apr 13, 2026, 04:23 PM (IST)

cybersecurity-2-1

photo icon Cyber Alert: Iran-Linked Group Targets US Energy and Water Systems

  • whatsapp
  • twitter
  • facebook
  • whatsapp
  • twitter
  • facebook

The US-Israel-Iran war is not just limited to the battlefield. Behind the scenes, there is something serious happening. As per the America’s Cyber Defense Agency, a group linked to Iran is reportedly targeting critical infrastructure systems in the US, and in some cases, it has already caused disruptions. Agencies have flagged this activity as urgent, asking organisations to review their systems immediately.

The focus isn’t on usual consumer apps or websites. Instead, attackers are going after industrial systems, specifically something called PLCs (programmable logic controllers). These are small but important devices used in places like:

  • Water treatment plants
  • Energy facilities
  • Manufacturing units

They basically act as the bridge between software and physical machines. If something goes wrong here, it doesn’t just stay digital, it can affect real-world operations.

How the attacks are working

From what has been shared so far, attackers are not relying on complicated “zero-day” exploits. Instead, they’re using legitimate tools and access methods to interact with these systems. That means if a device is exposed to the internet or not secured properly, it becomes an easier entry point.

Once inside, the attackers can access system project files, modify display data on control panels, and even disrupt how machines behave. Some organisations have already reported operational issues and financial losses because of this.

Should you worry?

As per the report, this activity is said to have started around March 2026 and may be linked to ongoing geopolitical tensions involving the US, Iran, and its allies. What makes this different from regular cyberattacks is the intent. As the goal of the cybercriminals is not just theft of the data, but the disruption. This isn’t entirely new territory. Similar groups linked to Iran have targeted industrial systems in the past as well.

There have also been recent reports of cyberattacks hitting platforms and even personal accounts of officials, suggesting a broader pattern of activity.

What should organisations do?

Authorities are advising organisations to take some immediate steps, such as:

Add Techlusive as a Preferred SourceAddTechlusiveasaPreferredSource

  • They are told to disconnect critical systems from public internet access
  • They must use stronger authentication methods
  • Always monitor unusual activity on industrial networks

The idea is to reduce exposure before attackers find a way in.