Pro-Iran hackers are targeting US industrial control systems, advisory says

Iran-aligned APT actors have been observed exploiting and disrupting Rockwell Automation Allen-Bradley programmable logic controllers (PLCs) in multiple U.S. critical infrastructure sectors, including water, energy, and government services. The campaign involved manipulation of human-machine interfaces (HMIs), SCADA displays, and project files, causing operational disruption and financial loss; the advisory was issued jointly by CISA, FBI, NSA, EPA, DOE and U.S. Cyber Command and recommends isolating PLCs from the internet, reviewing logs, and hardening Rockwell devices.