Greece on High Alert as Businesses Investigate Cyberattack Threats Linked to Iran

Greek authorities have issued warnings for companies to assess their systems for potential cyber breaches following increasing cyberattack risks related to the conflict in Iran.

Officials in Greece have recommended that shipping companies, banks, and firms in essential industries thoroughly search their IT systems for indicators of cyber intrusion after risks escalated due to the ongoing war in Iran.

The National Cybersecurity Authority of Greece released a high-priority alert last week, instructing security personnel across critical sectors such as transportation, telecommunications, healthcare, and energy to remain attentive and take precautionary action as global tensions rise.

This advisory comes after a series of cyber incidents attributed to Iranian- affiliated groups. Notably, a hacking collective tied to Iran claimed responsibility for an attack on Stryker, a medical technology firm based in the United States, on March 11. Additionally, Albania has confirmed it experienced a separate cyberattack on its parliamentary digital frameworks, executed by a group known as “Homeland Justice.”

While Greek officials have not disclosed the name of the international organization mentioned in the advisory, they have emphasized the importance of vigilance among companies, advising them to identify signs of compromise, including suspicious IP addresses, malicious software, and malware like the VShell Remote Access Trojan.

Sources indicate that at least two shipping companies have received alerts regarding these risks.

Furthermore, there has been a noticeable increase in reports concerning electronic disruptions affecting the navigation systems of commercial vessels around the Strait of Hormuz and the Gulf in recent days.

Currently, Greece has not reported any significant cyber breaches, but sources suggest that some degree of unusual activity has been observed.

The warning also highlighted the presence of a potentially sophisticated and unidentified threat actor employing complex infrastructure to conduct reconnaissance, gain unauthorized access, deploy malware, and avoid detection.

Ongoing investigations are being conducted as authorities continue to monitor the situation while urging enhanced security measures across critical sectors.