U.S. officials are investigating a wave of cyber intrusions targeting fuel monitoring systems at gas stations across several states, with early suspicions pointing toward hackers linked to Iran. The breaches reportedly involved automatic tank gauge (ATG) systems used to measure fuel levels in underground storage tanks.
According to officials familiar with the investigation, the hackers exploited poorly secured systems that were connected to the internet without password protection. In several cases, the attackers were able to manipulate tank display readings, although investigators say there is currently no evidence that actual fuel supplies were altered or that physical damage occurred.
Security experts warn that while the intrusions may appear limited, the implications are serious. ATG systems play a key role in monitoring fuel storage safety, and compromised readings could potentially prevent operators from detecting dangerous situations such as leaks or equipment failures. Experts say the incident highlights growing vulnerabilities in America’s critical infrastructure.
U.S. authorities have not officially blamed Iran, but officials say the country’s history of targeting fuel infrastructure makes it a leading suspect. Iran has previously been linked to cyber campaigns involving energy systems and critical infrastructure, both inside and outside the Middle East.
Cybersecurity analysts say the attack reflects a broader trend in modern cyber warfare, where hackers increasingly target operational technology rather than traditional computer networks. Fuel systems, water treatment facilities, and transportation infrastructure are now seen as attractive targets because disruptions can quickly create public panic and economic instability.
The incident has renewed concerns about the security of industrial control systems in the United States, especially after previous attacks on energy infrastructure such as the 2021 Colonial Pipeline ransomware attack, which caused widespread fuel shortages along the East Coast.
Federal investigators are continuing to analyze the breaches, though officials caution that attributing cyberattacks with certainty can be difficult due to limited forensic evidence. Even so, security agencies are urging operators of critical infrastructure systems to strengthen cybersecurity protections, including network segmentation, stronger authentication protocols, and continuous monitoring of operational technology systems.
About the Author
