Pro-Iranian hackers are increasingly targeting sites in the Middle East and the United States amid the ongoing war, raising concerns that American defense contractors, power stations, and water facilities could face digital disruptions if Tehran’s allies join the campaign.
Hackers aligned with Iran claimed responsibility for a cyberattack Wednesday on U.S. medical device company Stryker. Since the conflict began on Feb. 28, they have also attempted to access cameras in Middle Eastern countries to aid Iran’s missile targeting, while striking data centers, industrial sites in Israel, a Saudi school, and a Kuwaiti airport.
Iran has invested heavily in cyber warfare and cultivated ties with hacking groups, previously infiltrating U.S. political campaigns, military networks, and defense contractors. Analysts say the attacks aim to disrupt the U.S. war effort, inflate energy costs, strain cyber resources, and target companies linked to the defense sector.
Groups like Handala, claiming the Stryker attack, focus on data destruction rather than financial gain, according to cybersecurity experts. Pro-Iranian hackers openly discuss targeting U.S. military networks and critical infrastructure, including hospitals, ports, water plants, and power stations, on online forums.
Experts warn that weaker systems, such as local water or healthcare facilities, are likely targets, with tactics ranging from denial-of-service attacks to hack-and-leak operations. While Iran lacks the scale of countries like Russia or China, it compensates with ingenuity, previously impersonating U.S. activists online and attempting to infiltrate political communications.
Cybersecurity specialists caution that Western organizations remain on high alert, as pro-Iranian hackers, sometimes supported by Russian groups, continue operations aimed at creating chaos and undermining U.S. efforts.