Iranian hackers blamed for breach of Los Angeles transit system that took weeks to recover

Security researchers and the Israeli firm Gambit Security attribute a March breach of the Los Angeles County Metropolitan Transportation Authority (LACMTA) to Iranian-linked hackers allegedly working for Iran’s Ministry of Intelligence and State Security (MOIS); a self-styled hacktivist group, Ababil of Minab, claimed responsibility saying it stole and deleted data. Gambit ties the activity to prior Iran-linked campaigns and notes similar operations such as the Handala group’s attack on Stryker, highlighting a pattern of apparent state-backed or state-directed operations targeting infrastructure in multiple countries.