NSA’s Joyce: Israel faces ‘enormous amount of cyber pressure’ from Iran, hacktivists


Israel is experiencing direct cyber and misinformation attacks from a variety of adversaries as it battles Hamas, according to a senior National Security Agency official.

“There actually is an enormous amount of cyber pressure” on Israel today, said Rob Joyce, the head of the spy agency’s cybersecurity directorate, during a lunch panel Wednesday at the Aspen Cyber Summit moderated by Recorded Future News’ Dina Temple-Raston. “Now, the good news is, most of it is either nuisance attacks or not significantly impactful. So you’ve got some wiper viruses. There’s been some ransomware events.”

In some of the most extensive remarks on the cyber aspect of the conflict by a senior U.S. official since it began, Joyce said there are three groups that Israel “is worried about right now.”

The first is the Iranian government. Tehran has been Hamas’ longtime benefactor and U.S. national security leaders have sounded the alarm that Iran could bring its own formidable digital might to the conflict.

“The cyber targeting of American interests and critical infrastructure that we already see conducted by Iran and non-state actors alike we can expect to get worse if the conflict expands, as will the threat of kinetic attacks,” FBI Director Christopher Wray recently testified.

The second main threat comes from hacktivists, according to Joyce, who warned it can be difficult to tell if the groups are independent or backed by actual nation states.

Lastly, ransomware criminals have also sought to take advantage of the conflict, he noted.

The ongoing battle has forced Israel “to get much better at their cyberdefenses,” Joyce told the audience. “They have created structures and processes, and done a lot of work” to better protect their critical infrastructure from adversaries.

Of the three, most malicious activity has come from Iran and hacktivists. Joyce declined to say if Russia has also become a digital player in the conflict.

However, misinformation has “probably” had the most impact in the struggle, he added, highlighting an instance where an app used by Israelis to warn of incoming missile strikes went “completely red” with warnings that turned out to be false.

Joyce declined to say who was responsible for the incident.

Get more insights with the

Recorded Future

Intelligence Cloud.

Learn more.

No previous article

No new articles

Martin Matishak is a senior cybersecurity reporter for The Record. He spent the last five years at Politico, where he covered Congress, the Pentagon and the U.S. intelligence community and was a driving force behind the publication’s cybersecurity newsletter.


Leave a Reply

Your email address will not be published. Required fields are marked *

Previous Post

Nearly two dozen Danish energy companies hacked through firewall bug in May

Next Post

CISA’s Goldstein: Ukrainian response to Viasat hack proves need for redundancy, resilience

Related Posts

FIN7 Group Advertises Security-Bypassing Tool on Dark Web Forums

The financially motivated threat actor known as FIN7 has been observed using multiple pseudonyms across several underground forums to likely advertise a tool known to be used by ransomware groups like Black Basta. "AvNeutralizer (aka AuKill), a highly specialized tool developed by FIN7 to tamper with security solutions, has been marketed in the criminal underground and used by multiple
Read More

U.S. Treasury Sanctions Iranian Firms and Individuals Tied to Cyber Attacks

The U.S. Treasury Department's Office of Foreign Assets Control (OFAC) on Monday sanctioned two firms and four individuals for their involvement in malicious cyber activities on behalf of the Iranian Islamic Revolutionary Guard Corps Cyber Electronic Command (IRGC-CEC) from at least 2016 to April 2021. This includes the front companies Mehrsam Andisheh Saz Nik (MASN) and Dadeh
Read More