Breaking 20:05 Air travel disruptions expected to last several weeks, says Aéroports de Paris 19:50 Trump administration moves to drop defense of sanctions against major law firms 19:38 Modi urges peace in the Middle East amid escalating US, Israel and Iran strikes 19:27 Lebanon schools and universities close amid security escalation, uncertainty over rest of week 19:20 Un calls for maximum restraint between Israel and Hezbollah amid renewed cross-border clashes 19:10 Israeli airstrikes in Lebanon leave 52 dead and 154 injured, officials say 19:01 Hezbollah lawmaker criticizes Lebanese government over ban on armed actions 16:00 Spain affirms US has not and will not use its bases to strike Iran 15:55 Morocco links green hydrogen drive to AI strategy 15:45 Turkish and French Foreign Ministers discuss regional tensions in phone call 15:30 Iran’s decentralized cyber offensive heightens risk for U.S. firms 15:30 6 magnitude earthquake shakes Japan’s Volcano Islands 15:15 Bank of Canada signals rate hikes may be needed even amid weak economy 15:00 Lebanese gas distributors assure stocks are sufficient amid high demand 14:59 Morocco tests digital dirham for cross-border payments 14:43 Amazon doubles its investment in cloud and AI in Spain with additional 18 billion euros 14:30 Moroccan woman and her two brothers sentenced to life in UAE for cocaine trafficking 14:28 Global finance braces for mounting Iran crisis risks 14:25 U.S. Embassy in Beirut urges citizens to leave Lebanon amid escalating security risks 14:07 Bitcoin drops to $63,000 as Iran strikes rattle global markets 14:00 Turkish foreign minister holds talks with Azerbaijani and Bulgarian counterparts on regional tensions 13:55 Black smoke over Dubai as Iranian strikes ignite fires at Jebel Ali and Palm Jumeirah 13:47 US strikes on Iran spark severe flight chaos across Middle East 13:44 Only 27 percent of Americans support Trump’s military operation against Iran, poll finds 13:36 Tesla registrations jump in Norway and France as Denmark declines 13:33 European gas prices surge nearly 50 percent after QatarEnergy halts LNG production 13:21 Saudi Arabia places military on maximum alert after reported attacks 13:19 Porsche unveils 701 hp hybrid 911 Turbo S for 2026 13:14 Love Brand | Attijariwafa Bank among consumers’ favorite brands 13:04 US and Israel kill Khamenei in sweeping strikes on Iran 13:03 Love Brand | ElGrande Toto among the favorite public figures of 2025 12:53 El Niño’s potential 2026 return raises risk of new global heat records 12:46 Bitcoin swings as US and Israel strike Iran and markets eye Hormuz risk 12:46 Israeli army says it killed Hezbollah intelligence commander in Beirut strike 12:45 United Kingdom opens military bases to the United States against Iran but insists it is not at war 12:39 Pakistan and Afghanistan locked in fourth day of open war 12:30 Middle East conflict lifts dollar and gold as investors seek safety 12:17 Trump urges Iranians to rise as regime change path stays uncertain 12:00 Kuwait mistakenly shoots down three US fighter jets during regional escalation 11:58 US and Israel pound Iran as regional conflict widens 11:51 Cambodia recovers 74 looted Khmer artifacts from British dealer’s estate 11:50 Vatican restores Michelangelo fresco as salt veil is lifted 11:37 Youness Bouchida builds platform to elevate Made in Morocco brands 11:24 1896 Olympic medal shatters auction estimates in Denmark 10:49 Tarik Senhaji takes the helm of Morocco’s capital market authority at a pivotal reform moment 10:38 US Iran escalation raises energy and inflation risks for Morocco 10:23 Safe-haven currencies climb as Iran crisis rattles global markets 10:15 Ali Larijani moves to consolidate power after Khamenei killing 10:10 Musk’s ‘another one bites the dust’ post fuels backlash after Khamenei killing 09:52 Israel’s upgraded David’s Sling faces first major test in Iran clash 09:45 Amazon cloud outage in UAE exposes Gulf infrastructure to Iran conflict 09:33 Apple prepares three day wave of new product launches 09:26 Treasury yields hit multi‑month lows as Middle East war drives flight to safety 09:18 US Iran conflict fuels fears of strategic overstretch with China 09:13 Iran drone strike on Ras Tanura refinery deepens Gulf energy shock 08:50 Iran accuses US of destroying trust after Khamenei killing 08:20 Protests erupt across Middle East after US-Israel strikes on Iran 07:50 Lebanese PM condemns Hezbollah rocket fire amid escalation fears 07:20 US and Israel strike Iran, killing Khamenei and choking global oil routes 07:00 Iranian missile barrage kills nine in Israel and narrowly misses Jerusalem holy sites

Iran’s decentralized cyber offensive heightens risk for U.S. firms

15:30
Iran’s decentralized cyber offensive heightens risk for U.S. firms

As joint U.S. and Israeli airstrikes hit targets across Iran, security experts say a parallel and less predictable battle is unfolding in cyberspace, with potential long-term consequences for companies and critical infrastructure far beyond the region. Analysts warn that Iranian-aligned hackers and loosely affiliated sympathizers are turning to more decentralized and chaotic tactics, increasing the chance of disruptive attacks that are harder to anticipate or deter.

The evolving campaign has been galvanized by the formation of what militants call the “Great Epic” cyber offensive, a loose framework bringing together pro-Iranian hacktivist groups and cyber units that share tools, targets, and propaganda but operate with significant autonomy. Rather than relying solely on traditional state-directed operations, these actors are increasingly leveraging online forums, encrypted messaging platforms, and public code repositories to coordinate attacks and recruit volunteers with varying levels of technical skill. This shift, specialists say, blurs the line between state operations and crowd‑sourced digital retaliation, complicating efforts to attribute incidents and respond in a targeted way.

One of the most visible signs of this change has been a marked push toward public recruitment. The hacker collective Islamic Cyber Resistance has issued open calls for what it describes as “general mobilization,” inviting security researchers, developers, and other technology professionals to join a “great circle of war” in defense of Iran and its allies. Recruitment messages shared in Arabic and English urge prospective volunteers to contact coordinators directly, promising integration into a wider digital “resistance” network aimed at attacking infrastructure and information systems in the United States, Israel, and regional partners. Cyber analysts say this model resembles a crowdsourcing approach to offensive capabilities, dramatically expanding the pool of potential operators and amplifying both the scale and unpredictability of operations.

The air and cyber offensive launched by the United States and Israel at the end of February, under the operational names Epic Fury and Roaring Lion, has further destabilized Iran’s traditional command structures and appears to be accelerating this decentralization. Military and policy assessments describe the operation as a combined kinetic and digital strike designed to paralyze key regime institutions, including elements of the Revolutionary Guard, intelligence services, and critical communications systems. Analysts argue that by degrading central control, the campaign may unintentionally push more responsibility and initiative to loosely managed cyber affiliates and ideologically motivated hacktivists, who are less constrained by state policy or diplomatic considerations.

Threat intelligence firms report that pro-Iranian operators operating under the broader “Cyber Islamic Resistance” label have claimed responsibility for attacks on gas stations in Jordan as well as against U.S. and Israeli defense and technology contractors. These operations have ranged from data‑wiping attempts and website defacements to psychological warfare, where hackers publish screenshots and boast of their exploits in Telegram channels and other social platforms to amplify perceived impact. Verification of these claims often lags behind the propaganda, which can fuel confusion for targeted organizations and complicate incident response.

The hacking of the BadeSaba Calendar prayer app has become a defining example of how cyber tools are being used for psychological operations rather than purely technical disruption. With more than 5 million downloads, BadeSaba is widely used in Iran to track prayer times and religious observances, and is seen by many users as a trusted, apolitical utility. Over the weekend, the app sent push notifications reading “Help has arrived!” and calling for the formation of a “People’s Army” to support “Iranian brothers,” followed by messages directing lower‑ranking members of the Revolutionary Guard to surrender and pointing protesters toward alleged safe gathering points. Cybersecurity researchers say this incident illustrates how compromising a familiar consumer app can be used to seed disinformation, erode trust in digital services, and inflame tensions at moments of maximum uncertainty.

Researchers at firms such as CloudSEK and Flashpoint have documented a sharp escalation in hacktivist activity since the launch of Operation Epic Fury and Roaring Lion, counting more than a hundred claimed incidents in the space of just a few days. The attacks have targeted a wide range of sectors, including energy, finance, government services, and information technology, often through low‑cost methods such as website defacement, denial‑of‑service attacks, and data leaks. While many incidents cause only temporary disruption, experts warn that the volume of activity increases the likelihood that a more sophisticated intrusion could compromise sensitive systems or trigger cascading failures in connected networks.

For U.S. companies, the primary risk is no longer limited to traditional data theft or espionage campaigns tied to identifiable Iranian advanced persistent threat (APT) groups. Instead, executives and security leaders must prepare for a more diffuse threat landscape in which semi‑independent actors, inspired or encouraged by Tehran, seek to undermine public trust, disrupt operations, or damage reputations through targeted leaks and false information. That could mean attacks designed to manipulate internal communication tools, alter content on corporate websites, or flood customer‑facing channels with forged messages that appear to come from trusted sources.

Security practitioners say this environment demands a stronger emphasis on resilience and detection rather than reliance on traditional deterrence or diplomatic pressure. Companies are being urged to test incident response plans, harden access to cloud and identity systems, and train employees to treat unexpected messages and alerts with skepticism, even when they appear to originate from familiar apps or internal services. Critical infrastructure providers, including in the energy, transportation, and financial sectors, are under particular pressure to improve segmentation between operational and administrative networks, as well as to share real‑time intelligence about suspicious activity with industry peers and government partners.

Analysts caution that the decentralization of Iran‑aligned cyber activity is likely to persist as long as the broader confrontation continues, and may even outlast any ceasefire or reduction in direct military hostilities. In practical terms, that means organizations with U.S., Israeli, or allied ties could remain on target lists long after the latest round of strikes fades from headlines, especially if they are seen as symbolically important or vulnerable. For many security teams, the challenge will be to sustain higher levels of vigilance over months or years, adjusting to a threat model in which small, loosely coordinated groups can still inflict outsized damage on public confidence and digital infrastructure.

 

Keywords:



Latest News
  • Fajr
  • Sunrise
  • Dhuhr
  • Asr
  • Maghrib
  • Isha

Newsletter

Subscribe now to the Walaw website newsletter to receive all the latest updates

Email address

Read more

Musk’s ‘another one bites the dust’ post fuels backlash after Khamenei killing Politics Musk’s ‘another one bites the dust’ post fuels backlash after Khamenei killing
Protests erupt across Middle East after US-Israel strikes on Iran Politics Protests erupt across Middle East after US-Israel strikes on Iran

This website, walaw.press, uses cookies to provide you with a good browsing experience and to continuously improve our services. By continuing to browse this site, you agree to the use of these cookies.