The US critical infrastructure industry and federal authorities have been coping with a series of threat actor attacks on organizations, particularly water utilities, by a shadowy Iranian threat actor exploiting security holes in internet-connected equipment deployed in industrial control system (ICS) environments.
The substantial worries surrounding these incidents, which were seemingly triggered by the Hamas-Israel war, suggest that these kinds of attacks will continue for the foreseeable future. However, some cybersecurity and industrial control system security experts have doubts that Iran as a nation-state was behind the attacks given their amateurish nature.
