As tensions escalate following U.S. and Israeli military strikes on Iran, cybersecurity experts warn that Tehran could upgrade its cyber operations, including using artificial intelligence (AI) to target critical infrastructure in the United States, Israel and Gulf states. While Iran hasn’t publicly demonstrated a large-scale, AI-directed cyberattack yet, its long history of offensive cyber activity — from espionage to disruption campaigns — combined with the ongoing conflict has heightened concern among security analysts.
Iran’s cyber forces — including the Islamic Revolutionary Guard Corps and affiliated groups — are already regarded as among the most capable outside of major cyber powers like Russia, China and the U.S. Analysts note that Iran has experimented with AI tools in hacking operations for years, using them for tasks such as scanning networks, automating phishing campaigns and helping craft malicious software. While open evidence of fully autonomous AI cyberattacks against U.S. infrastructure is limited, experts say Tehran’s intent and evolving capabilities make such scenarios plausible if conflict pressures increase.
A major concern is that AI can amplify traditional cyber tactics at speed and scale. Instead of replacing existing methods entirely, AI tools could help Iran’s cyber actors generate more convincing social-engineering lures, automate reconnaissance across thousands of systems, and accelerate exploitation of vulnerabilities — all without needing large teams of expert programmers for each exploit. Some security professionals warn that even if Iran doesn’t possess high-end, proprietary Western models, open-source AI platforms can be deployed locally without monitoring or guardrails, making them useful for adversaries under sanctions.
The article highlights that governments and companies may not yet be fully prepared for such threats. Defensive systems and incident response plans tend to be built around known attack patterns, not AI-supercharged campaigns that evolve quickly. Given the broader geopolitical backdrop — including warnings from other cybersecurity agencies about rising Iran-linked threats — both public and private sectors are being urged to strengthen resilience and rethink how AI might shape future cyber warfare, especially against critical infrastructure like energy grids, finance systems and telecommunications networks.
