IT / OT Security News
Headlines: 2026
7 April 2026
Russian Hackers Exploiting Home and Small-office Routers in Massive DNS hijacking Attack
A large-scale campaign by Forest Blizzard, a Russian military-linked threat actor, targeting home and small-office routers to hijack DNS traffic and intercept encrypted communications with over 200 organizations and 5,000 consumer devices already compromised.
2 April 2026
Iran Conflict Heightens Cyber Threats to U.S. Energy Infrastructure
The energy sector has long been targeted as a point of leverage in geopolitical conflict. Historically, energy disruptions were concentrated on logistical and supply interruptions to exert economic pressure on adversaries—for example, through sanctions, oil embargos, and restrictions on key shipping lanes. More recently, however, direct physical attacks on energy infrastructure have increasingly been deployed as a core military strategy.
30 March 2026
Team Cymru warns exposed ICS and OT devices targeted by nation-state actors raise industrial, critical infrastructure risks
Following last month’s post highlighting its capabilities for protecting ICS (industrial control systems) and OT (operational technology) environments, Team Cymru published new research examining three case studies that reveal the extent of exposed ICS and OT devices known to be targeted by hostile nation-state actors. The findings underscore a critical concern: many of these systems remain directly exposed and vulnerable to exploitation.
24 March 2026
Iran Built a Vast Camera Network to Control Dissent. Israel Turned It Into a Targeting Tool
The role of Israel’s hijacking of Iran’s street cameras in the killing of the country’s supreme leader underscores how surveillance systems are increasingly being targeted by adversaries in wartime.
12 February 2026
CISA issues new OT security guidance to overcome cost and complexity barriers in critical infrastructure
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) released new guidance aimed at closing long-standing gaps in OT (operational technology) security across critical infrastructure sectors, including water and wastewater, transportation, chemical, energy, and food and agriculture.
9 February 2026
Leaked technical documents show China rehearsing cyberattacks on neighbors’ critical infrastructure
China appears to be using a secret training platform to rehearse cyberattacks against the critical infrastructure of its closest neighbors, according to a cache of leaked technical documents reviewed by Recorded Future News.
30 January 2026
ICS Devices Bricked Following Russia-Linked Intrusion Into Polish Power Grid
The recent attack on Poland’s power grid, believed to have been conducted by Russian threat actors, targeted communication and control systems across roughly 30 sites and in some cases resulted in permanent industrial control system (ICS) damage, according to industrial cybersecurity firm Dragos.
26 January 2026
Poland repels data-wiping malware attack on energy systems
According to information shared by the Polish government earlier this month, the attacks happened on 29 and 30 December 2025, and targeted two combined heat and power (CHP) plants and a system enabling the management of electricity generated from wind turbines and photovoltaic farms.
15 January 2026
Chinese hackers targeting ‘high value’ North American critical infrastructure, Cisco says
Chinese hackers successfully breached multiple critical infrastructure organizations in North America over the last year using a combination of compromised credentials and exploitable servers, researchers at Cisco Talos found.