Iran Signed a Ceasefire — Its Hackers Didn't: Handala and Iran-Linked Groups Pledge to Escalate Cyberattacks on US and Israel Post-Truce

Dark Reading reports that Iran-linked hacking group Handala has explicitly stated the military ceasefire does not apply to cyber operations, pledging to continue targeting Israel and resume attacks on US organizations when 'the time is right.' A cybersecurity executive quoted in the piece expects attacks on American organizations to increase post-ceasefire, as a lull in kinetic fighting frees threat actors to shift from regional targets toward US entities that participated in the war effort. Handala has previously claimed credit for disrupting Stryker medical operations and compromising FBI Director Kash Patel's personal email.