Pro-Iran Attackers Access Multiple Water Facility Controllers

Critical infrastructure in multiple US states may have been compromised by Iran-affiliated attackers targeting programmable logic controllers (PLCs).

A warning from the FBI, Cybersecurity and Infrastructure Security Agency (CISA), National Security Agency (NSA), the Environmental Protection Agency (EPA), and the Israel National Cyber Directorate comes after an attack was detected on a Pennsylvania water authority last week, where the CyberAv3ngers threat group hacked Unitronics Vision Series PLCs.

Researchers believe that the CyberAv3ngers are affiliated with Iranian Government Islamic Revolutionary Guard Corps (IRGC), and are politically motivated to go after the Unitronics PLCs, which have components that are Israeli-owned.

The national intelligence and security agencies are now warning that the attacks extend beyond the Keystone State; beginning on Nov. 22, the cyber actors accessed multiple US-based facilities that utilize Unitronic PLCs with human machine interfaces (including water and wastewater installations), likely by compromising Internet-accessible devices with default passwords. Worse, the attackers may have had access for more than 10 days.

These compromised devices are often exposed to external Internet connectivity due to the remote nature of their control and monitoring functionalities, and by default are on TCP port 20256. Any compromise could render the PLC inoperative, which could lead to the shutdown of the operational technology (OT) responsible for the physical workings of utilities and other industrial control facilities.

The agencies say it is not known whether attackers dug deeper into these PLCs, but warned any organizations running these controllers to evaluate their systems.

SEO Powered Content & PR Distribution. Get Amplified Today.
PlatoData.Network Vertical Generative Ai. Empower Yourself. Access Here.
PlatoAiStream. Web3 Intelligence. Knowledge Amplified. Access Here.
PlatoESG. Carbon, CleanTech, Energy, Environment, Solar, Waste Management. Access Here.
PlatoHealth. Biotech and Clinical Trials Intelligence. Access Here.
Source: https://www.darkreading.com/ics-ot-security/Pro-Iran-Attackers-Access-Multiple-Water-Facility-Controllers

Plato Data Intelligence.
Vertical Search & Ai.

Pro-Iran Attackers Access Multiple Water Facility Controllers

Young Investor Skyrockets Initial $500 To $20,000 In Under One Week With Emerging Competitor To Shiba Inu (SHIB) – CryptoInfoNet

CoinGecko Reports NFT Lending Surpasses $2.1 Billion In Q1, Reaching A Quarterly High – CryptoInfoNet

Latest Intelligence

5 Altcoins You Should Keep An Eye On In May

XRP, Ether, Cardano, SOL, Shiba Inu to Activate New Price Explosions as Key Metrics Suggest Crypto Winter is Over

Meow Scientist (MEOWSC) to Rally 6,500%, Looks to Challenge Shiba Inu and Dogecoin

Velocity Labs Announced A Fiat To Crypto Onramp Using Ramp Network

Stripe Enables Merchants To Accept USDC Payments on Ethereum, Solana and Polygon

BlockDAG Surpasses Dogecoin, SHIB, Bonk, and Others with a $21 Million Milestone

Chat with us

Plato Data Intelligence.Vertical Search & Ai.

Pro-Iran Attackers Access Multiple Water Facility Controllers

Latest Intelligence

Chat with us

Plato Data Intelligence.
Vertical Search & Ai.