alt.hn

4/7/2026 at 8:00:59 PM

Iranian hackers launching disruptive attacks at U.S. energy, water targets [pdf]

https://www.cisa.gov/sites/default/files/2026-04/AA26-097A-Iranian-Affiliated-Cyber-Actors-Exploit-Programmable-Logic-Controllers-Across-US-Critical-Infrastructure_508c.pdf

by lschueller

4/7/2026 at 8:29:50 PM

Noob sidenote, TIL that you must "defang" ip addresses in security reports so you write it with brackets like 135.136.1[.]133.

This prevent it from being clickable.

by whynotmaybe

4/7/2026 at 8:32:35 PM

Links are also often modified with "hxxps" instead of "https". Link is still clickable but will not work.

by lbourdages

4/7/2026 at 8:41:27 PM

There was a day when many people used a Firefox addon that rewrote hxxps to https and would undefang the IP addresses. I can't remember what it's called but these days I use FoxReplace to do similar things. If I want to obfuscate things I typically base64 encode for the laptop and workstation users.

    Q3V6IEkgYW0gcGlwcGkgbG9uZ3N0b2NraW5ncyBob3BlIGFuZCBhIGhheSBhbmQgYSBob3BlIHNoYXcgbmF3Lg==

by Bender

4/7/2026 at 10:03:20 PM

I see they've learnt a thing or two from stuxnet

by bcjdjsndon

4/7/2026 at 9:05:48 PM

Earlier release page: https://news.ycombinator.com/item?id=47679202

by ChrisArchitect

4/7/2026 at 9:04:47 PM

Therefore...defund CISA?

by tencentshill