The fallout and potential exposure from Iran’s state-backed targeting of U.S. critical infrastructure extends to more than 5,200 internet-connected devices, researchers at Censys said in a threat intelligence brief Wednesday. Of the programmable logic controllers manufactured by Rockwell Automation/Allen-Bradley that Censys identified as potentially exposed to Iranian government attackers, nearly 3,900, or about 3 out of every 4, are based in the United States. The cybersecurity firm identified the devices based on details multiple federal agencies shared in a joint alert Tuesday. … The operational technology devices are deployed across the energy sector, water and wastewater systems, and U.S. government services and facilities. 

Related article:

• The Washington Post: Opinion: U.S. water infrastructure is vulnerable to hacks. Iran knows it.