The War Between Wars: IRGC Front Conducts Destructive OT and IT Attacks During Ceasefire

A food plant experienced operational sabotage when attackers remotely altered industrial controllers, causing equipment failure and product spoilage without using malware. The same network contained a disk wiper disguised as a fake Microsoft update. The attacks, attributed to an IRGC-directed front, occurred during a ceasefire. The incident response team provided GRAT indicators of compromise (IOCs) and a YARA rule.