Iranian hackers have penetrated the computer networks of government agencies and major critical infrastructure companies in the United States and 15 other countries over the past two years in a campaign that could eventually cause physical damage. This – according to a report by cybersecurity company Cylance.
California-based Cylance released an 87-page report detailing the actions of the global surveillance and infiltration campaign dubbed “Operation Cleaver” because the attackers used the string “cleaver” in a variety of the custom software used in the campaign.
“We believe our visibility into this campaign represents only a fraction of Operation Cleaver’s full scope,” the report stated. “We believe that if the operation is left to continue unabated, it is only a matter of time before the world’s physical safety is impacted by it.”
According to InHomelandSecurity, targets have included some of the most sensitive global critical infrastructure companies across the globe, including: military, oil and gas, energy and utilities, transportation, hospitals, telecommunications, technology, education, aerospace, defense contractors, chemical companies and governments.
The report did not name companies, but identified over 50 victims impacted by the attacks. The hackers have hit firms in the United States, Canada, China, England, France, Germany, India, Israel, Kuwait, Mexico, Pakistan, Qatar, Saudi Arabia, South Korea, Turkey and the United Arab Emirates.