istock.com/mirsadsarajlic
Cybersecurity solutions provider Flashpoint continues to offer updates on the conflict in Iran. While Iran has entered what it is calling a Mosaic Defense protocol, with retaliatory strikes being managed by decentralized provincial commands to combat the loss of central leadership, cyberattacks from prominent groups continue to escalate:
- NoName057(16): This pro-Russian group conducted extensive DDoS attacks against infrastructure in both Cyprus (due to the presence of UK military installations on the island) and Israel. The group has also claimed (unverified) attacks on Israeli national water company Mekorot and UAV firm E.M.I.T. Aviation.
- BD Anonymous & MrSutrator Alliance: This newly formed pro-Palestinian alliance launched "Operation Electronic Holocaust," specifically targeting Israeli defense contractor and producer of the country's Iron Dome, Rafael. This claim has not been verified.
- DieNet: The group issued warnings of a "worst-case scenario" for Israel's cyber infrastructure and claimed past responsibility for disrupting government websites. This claim has not been verified.
Flashpoint offers the following security recommendations:
- Organizations must heighten monitoring for DDoS activity.
- Shipping companies should follow MSC’s lead in suspending Gulf port exports until the Strait of Hormuz can be secured by international naval forces.
- Energy and water facilities in the region must increase air defense integration, as Iran is targeting these "lifeline" utilities.
On March 9, President Trump announced the war with Iran would end “soon”, but on March 10, it was affirmed the conflict would continue until Iran’s ballistic missile, nuclear, and proxy capabilities no longer pose a "credible and direct threat."
