Cyber Agency Warns of Attack on US Water Facilities – Heightened Security Concerns

The US Cybersecurity and Infrastructure Security Agency (CISA) is advising users of a widely used programmable logic controller (PLC) to ensure the security of their devices following reported attacks by Iranian threat actors. CISA has identified attackers attributed to the Islamic Revolutionary Guard Corps (IRGC) of the Iranian government exploiting the default admin password “1111” on Unitronix PLCs. The attacks primarily involve defacing target units with anti-Israel messages, but CISA warns that more serious compromises may have occurred. The targeted devices are Unitronix Vision series PLCs with human machine interfaces (HMI). The campaign started in October with targets in Israel and has since expanded to “multiple US states.” CISA recently issued a warning about PLC attacks, emphasizing the need for stronger security measures such as changing passwords, implementing multifactor authentication, and using firewalls and IP address restrictions for internet-exposed PLCs.

Unlock your business potential with our expert guidance. Get in touch now!


NCA Faces Backlash for Targeting LockBit Gang Leaders


Top 5 Free Accounting Software Picks for 2024


Surge in Cyber Attacks, Including Ransomware, Observed Among ConnectWise Users


Top 6 Accounting Software Choices for Freelancers


Disgraced Post Office CEO has CBE stripped by King Charles


State-Sponsored Cyber Attacks: A Concern for Cyber Security Professionals


Concerns Rise among Cybersecurity Experts Due to ‘Insignificant’ ConnectWise Vulnerabilities