Skip to main content
The Globe and Mail
Get full access to globeandmail.com
Support quality journalism
Just $1.99 per week for the first 24 weeks
Just $1.99 per week for the first 24 weeks
The Globe and Mail
Support quality journalism
Get full access to globeandmail.com
Globe and Mail website displayed on various devices
Just$1.99
per week
for the first 24 weeks

var select={root:".js-sub-pencil",control:".js-sub-pencil-control",open:"o-sub-pencil--open",closed:"o-sub-pencil--closed"},dom={},allowExpand=!0;function pencilInit(o){var e=arguments.length>1&&void 0!==arguments[1]&&arguments[1];select.root=o,dom.root=document.querySelector(select.root),dom.root&&(dom.control=document.querySelector(select.control),dom.control.addEventListener("click",onToggleClicked),setPanelState(e),window.addEventListener("scroll",onWindowScroll),dom.root.removeAttribute("hidden"))}function isPanelOpen(){return dom.root.classList.contains(select.open)}function setPanelState(o){dom.root.classList[o?"add":"remove"](select.open),dom.root.classList[o?"remove":"add"](select.closed),dom.control.setAttribute("aria-expanded",o)}function onToggleClicked(){var l=!isPanelOpen();setPanelState(l)}function onWindowScroll(){console.log("scroll");var l=isPanelOpen(),n=0===(document.body.scrollTop||document.documentElement.scrollTop);n||l||!allowExpand?n&&l&&(allowExpand=!0,setPanelState(!1)):(allowExpand=!1,setPanelState(!0))}pencilInit(".js-sub-pencil",!1);

The United States carried out a secret cyber operation against Iran in the wake of the Sept. 14 attacks on Saudi Arabia’s oil facilities, which Washington and Riyadh blame on Tehran, two U.S. officials have told Reuters.

The officials, who spoke on condition of anonymity, said the operation took place in late September and took aim at Tehran’s ability to spread “propaganda.”

One of the officials said the strike affected physical hardware, but did not provide further details.

Story continues below advertisement

It highlights how President Donald Trump’s administration has been trying to counter what it sees as Iranian aggression without spiraling into a broader conflict.

The strike appears more limited than other such operations against Iran this year after the downing of an American drone in June and an alleged attack by Iran’s Revolutionary Guards on oil tankers in the Gulf in May.

The United States, Saudi Arabia, Britain, France and Germany have publicly blamed the Sept. 14 attack on Iran, which denied involvement in the strike. The Iran-aligned Houthi militant group in Yemen claimed responsibility.

Publicly, the Pentagon has responded by sending thousands of additional troops and equipment to bolster Saudi defenses - the latest U.S. deployment to the region this year.

The Pentagon declined to comment about the cyber strike.

“As a matter of policy and for operational security, we do not discuss cyberspace operations, intelligence, or planning,” said Pentagon spokeswoman Elissa Smith.

The impact of the attack, if any, could take months to determine, but cyber strikes are seen as a less-provocative option below the threshold of war.

Story continues below advertisement

“You can do damage without killing people or blowing things up; it adds an option to the toolkit that we didn’t have before and our willingness to use it is important,” said James Lewis, a cyber expert with the Washington-based Center for Strategic and International Studies.

Lewis added that it may not be possible to deter Iranian behavior with even conventional military strikes.

Tensions in the Gulf have escalated sharply since May 2018, when Trump withdrew from the 2015 Joint Comprehensive Plan of Action with Tehran that put limits on its nuclear program in exchange for the easing of sanctions.

It was unclear whether there have been other U.S. cyber attacks since the one in late September.

Iran has used such tactics against the United States. This month, a hacking group that appears linked to the Iranian government tried to infiltrate email accounts related Trump’s re-election campaign.

Over 30 days in August and September, the group, which Microsoft dubbed “Phosphorous,” made more than 2,700 attempts to identify consumer accounts, then attacked 241 of them.

Story continues below advertisement

Tehran is also thought to be a major player in spreading disinformation.

Last year a Reuters investigation found more than 70 websites that push Iranian propaganda to 15 countries, in an operation that cybersecurity experts, social media firms and journalists are only starting to uncover.

Tensions with Iran have been high since the Sept. 14 attack. Tehran has claimed that an Iranian tanker was hit by rockets in the Red Sea last week and warned on Monday that there would be consequences.

At a news conference on Monday, President Hassan Rouhani reiterated his country’s policy toward the Trump administration, ruling out bilateral talks unless Washington returns to the landmark nuclear deal and lifts crippling U.S. economic sanctions.

Report an error
Due to technical reasons, we have temporarily removed commenting from our articles. We hope to have this fixed soon. Thank you for your patience. If you are looking to give feedback on our new site, please send it along to feedback@globeandmail.com. If you want to write a letter to the editor, please forward to letters@globeandmail.com.

Welcome to The Globe and Mail’s comment community. This is a space where subscribers can engage with each other and Globe staff. Non-subscribers can read and sort comments but will not be able to engage with them in any way. Click here to subscribe.

If you would like to write a letter to the editor, please forward it to letters@globeandmail.com. Readers can also interact with The Globe on Facebook and Twitter .

Welcome to The Globe and Mail’s comment community. This is a space where subscribers can engage with each other and Globe staff. Non-subscribers can read and sort comments but will not be able to engage with them in any way. Click here to subscribe.

If you would like to write a letter to the editor, please forward it to letters@globeandmail.com. Readers can also interact with The Globe on Facebook and Twitter .

Welcome to The Globe and Mail’s comment community. This is a space where subscribers can engage with each other and Globe staff.

We aim to create a safe and valuable space for discussion and debate. That means:

  • Treat others as you wish to be treated
  • Criticize ideas, not people
  • Stay on topic
  • Avoid the use of toxic and offensive language
  • Flag bad behaviour

Comments that violate our community guidelines will be removed.

Read our community guidelines here

Discussion loading ...

To view this site properly, enable cookies in your browser. Read our privacy policy to learn more.
How to enable cookies