Cyberattack

• NATO's Cyber Defense Centre convened an emergency session Friday evening after Russia launched a sophisticated cyberattack targeting Poland's electrical grid and water treatment facilities, temporarily affecting 2.3 million residents. • Polish authorities attribute the attack to Russian military intelligence, claiming it used previously unknown malware variants designed to evade NATO defense systems and test alliance cyber resilience. • The incident prompted NATO to raise its cyber alert status to level 3, the highest in the alliance's history, and triggered Article 5 consultations regarding collective defense implications.

• IBM launched IBM Autonomous Security on April 17, 2026, a multi-agent AI service automating detection, policy enforcement, and remediation against frontier AI-driven attacks in hybrid environments. • The solution addresses emerging 'agentic attacks' where adversaries use advanced AI models, with nearly 80% of global IT leaders citing AI as a major security risk. • IBM also released an enterprise cybersecurity assessment tool focused on threats from large language models and generative AI.

• Iranian cyberattacks target critical U.S. infrastructure as President Trump threatens strikes on Iran's bridges and power plants. • The cyber activity escalates frictions during the fraying ceasefire, with unclear U.S. peace terms. • U.S. officials report the attacks follow Trump's profanity-laden threats, prompting Democratic backlash.

• A pro-Iranian cybercrime group claimed responsibility for cyberattacks that knocked the websites of Chime and Pinterest offline in April, marking a significant coordinated breach affecting major U.S. tech platforms. • The attacks demonstrate the evolving threat landscape where state-affiliated or state-aligned cyber actors target critical infrastructure and consumer-facing platforms with increased sophistication. • The incidents underscore the vulnerability of major technology companies to coordinated cyberattacks and highlight ongoing concerns about foreign threat actors targeting U.S. digital infrastructure.

Security agencies say municipalities should watch out for unusual activity, especially in water and energy sectorsMiddle East crisis – live updatesTop government security agencies issued a warning of Iran-affiliated cyberattacks on critical infrastructure across the US on Tuesday. In a joint statement, the agencies say that municipalities, especially in the water and energy sectors, should be on the lookout for unusual activity.“Cyberattacks on drinking water and wastewater systems directly threaten public health and community resilience,” Jeffrey Hall, an assistant administrator for enforcement and compliance assurance for the Environmental Protection Agency (EPA), said in a statement. “A single breach can disrupt treatment or introduce contaminants, damage equipment, and erode public trust.” Continue reading...

• Stryker, a major US medical device manufacturer, suffered a cyberattack causing widespread business disruption, reported on March 27, 2026. • The company stated operations are steadily improving toward full capacity after the incident. • This incident highlights ongoing cybersecurity vulnerabilities in US healthcare tech supply chains.

• Iran-linked hackers conducted a cyberattack last week on Stryker, a US medical technology company, exposing modern cybersecurity threats to critical infrastructure. • The incident serves as a wake-up call for the United States regarding vulnerabilities in the healthcare sector to nation-state actors. • Stryker, a major player in med-tech, faced disruptions highlighting the escalating risks from geopolitical cyber operations.