Advisory: Middle East Conflict & Cyber Escalation

This advisory summarizes a large-scale, multi-actor cyber escalation following US–Israel strikes on Iran in early 2026: Iranian state-linked APTs, China-aligned actors, opportunistic hacktivists, and criminal groups conducted espionage, supply-chain compromises, credential theft, and destructive wiper operations (notably the Stryker MDM wipe and TeamPCP’s Trivy/CanisterWorm activity), exploited networked cameras and known CVEs for targeting, and used Telegram-based C2; the report lists observed IOCs, TTPs, sector impacts, and prioritized mitigation actions for defenders.