4,000 US INDUSTRIAL DEVICES EXPOSED TO IRANIAN CYBERATTACKS

The attack surface encompasses critical infrastructure networks across the country. Programmable logic controllers are essential components in industrial automation systems, controlling machinery and processes in manufacturing, utilities, and other sectors. Rockwell Automation is a major supplier of PLCs and industrial control systems used extensively in US infrastructure. The exposure of these devices suggests inadequate network segmentation or security configurations that leave critical equipment directly accessible from the internet. Iranian state-sponsored cyber groups have previously targeted US infrastructure as part of broader geopolitical tensions. The discovery highlights ongoing vulnerabilities in industrial control systems, where legacy equipment often lacks modern security features. Experts recommend air-gapping critical systems, implementing network segmentation, and deploying intrusion detection systems. Organizations operating PLCs should audit their network exposure and apply available security patches and updates from Rockwell Automation.