Iranian-Backed Hackers Promise No Pause in Cyberattacks Despite Ceasefire

The fragile ceasefire recently declared between Iran, the United States, and Israel is already showing cracks—and cyber warfare is proving to be a battlefield that refuses to cool down. Hackers allied with Tehran, including the notorious Handala group, have made it clear that their digital attacks will continue unabated, targeting American and Israeli interests alike.

Handala, a pro-Palestinian and pro-Iranian hacking collective operating independently of Tehran, announced a temporary pause in attacks on the US but pledged to keep hitting Israel. More ominously, they warned that cyber warfare predates the current military conflict and will outlast any ceasefire. "We did not begin this war, but we will be the ones to finish it," the group declared on its X account.

This is not empty bluster. Handala has claimed responsibility for high-profile hacks, including disrupting operations at Stryker, a major US medical equipment manufacturer, and breaching FBI Director Kash Patel's personal email account. Other pro-Iranian hackers have targeted Israeli phones, Middle Eastern surveillance cameras, and critical data centers across the region.

US authorities are sounding the alarm. A joint advisory from the FBI, NSA, and Cybersecurity and Infrastructure Security Agency highlighted that hackers have infiltrated programmable logic controllers—computers that run essential infrastructure like ports, power plants, and water treatment facilities. Such breaches threaten to disrupt everyday American life and national security.

Cybersecurity experts predict that the ceasefire could actually embolden hackers to intensify their operations against US targets. Markus Mueller of Nozomi Networks warns that a lull in direct conflict might allow these groups to expand their reach, aiming for high-profile attacks designed to grab public attention. "We will likely see an expansion of cyber activity both in scale and scope," Mueller said.

The pattern is clear: these cyberattacks are less about immediate damage and more about psychological warfare—boosting morale among Iran's supporters while exposing vulnerabilities in US and Israeli defenses. The recent hack of Stryker was reportedly retaliation for strikes that killed Iranian schoolchildren, illustrating how these digital assaults are deeply intertwined with the broader conflict.

As the ceasefire hangs by a thread, Americans should brace for a cyber war that shows no signs of ending anytime soon. The Trump administration’s legacy of politicizing law enforcement and intelligence agencies, including the tenure of FBI Director Kash Patel, has done little to fortify the country’s defenses against such threats. In this new age of warfare, digital fronts are as critical as physical ones—and ignoring them risks handing the advantage to hostile actors who are already inside the gates.