PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

US Warns of Iranian Hackers Targeting Water Facilities

The US Cybersecurity and Infrastructure Security Agency issues the warning after Iranian hackers reportedly breached a water supplier in Pennsylvania.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS
(Credit: MWAA)

An incident in Pennsylvania is causing US cyber authorities to warn that hackers are trying to hijack access to water and wastewater treatment facilities in the country. 

On Tuesday, the Cybersecurity and Infrastructure Security Agency (CISA) issued an alert about the threat after a suspected Iranian hacking group gained remote access to IT systems at a water provider in Aliquippa, Pennsylvania. 

According to KDKA, the Municipal Water Authority of Aliquippa suffered a breach involving a water pump station that regulates the pressure for two local townships. The water authority appears to have traced the attack to the Iranian group Cyber Av3ngers, by citing a note the hackers left on the infected IT system: a terminal from Israel-based Unitronics.

In the note, the hacker wrote: “Down with Israel… Every equipment ‘made in Israel’ is Cyber Av3ngers legal target.”

It's not clear how the hackers hijacked the Unitronics terminal. But CISA is urging water suppliers that use Unitronics programmable logic controllers to be on guard for potential hacks. 

Recommended by Our Editors

Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Meta's AI Chatbot Allegedly Helped Hackers Hijack Instagram Accounts
Craigslist Founder Teams Up With a Muppet to Persuade People to Stop Clicking on Scams
Craigslist Founder Teams Up With a Muppet to Persuade People to Stop Clicking on Scams
This AI Kidnapping Scam Is Every Parent's Worst Nightmare
This AI Kidnapping Scam Is Every Parent's Worst Nightmare

In the case of Aliquippa, there’s “no known risk to the municipality’s drinking water or water supply” following the hack of the Unitronics terminal, the agency said. Nevertheless, Unitronics programmable logic controllers are often used to manage and monitor various water and wastewater treatment processes. 

This can include “turning on and off pumps at a pump station to fill tanks and reservoirs, flow pacing chemicals to meet regulations, gathering compliance data for monthly regulation reports, and announcing critical alarms to operations,” CISA said. Hence, any attempt to hijack and disrupt the Unitronics systems could undermine a water facility’s ability to supply clean water or properly treat wastewater. 

“The cyber threat actors likely accessed the affected device—a Unitronics Vision Series PLC with a Human Machine Interface (HMI)—by exploiting cybersecurity weaknesses, including poor password security and exposure to the internet,” the agency added.

In response, US cyber authorities are urging affected water suppliers to change the default “1111” password on Unitronics terminals and to implement multi-factor authentication on their networks. 

So far, the Cyber Av3ngers have claimed on Twitter/X that they've already attacked 10 water treatment facilities in Israel by infiltrating their IT networks and wiping the data.

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio