{"id":221245,"date":"2026-05-27T15:42:00","date_gmt":"2026-05-27T19:42:00","guid":{"rendered":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/27\/irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says\/"},"modified":"2026-05-27T15:50:43","modified_gmt":"2026-05-27T19:50:43","slug":"irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says","status":"publish","type":"post","link":"https:\/\/testing.news-you-need.com\/index.php\/2026\/05\/27\/irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says\/","title":{"rendered":"Iran\u2019s hackers are coordinating more closely, Israel\u2019s top cyberdefense official says"},"content":{"rendered":"<p><a href=\"https:\/\/www.nextgov.com\/cybersecurity\/2026\/05\/irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says\/413792\/?orefu003dng-homepage-river\">Iran\u2019s hackers are coordinating more closely, Israel\u2019s top cyberdefense official says<\/a><\/p>\n<p><a href=\"https:\/\/www.nextgov.com\/cybersecurity\/2026\/05\/irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says\/413792\/?orefu003dng-homepage-river\">https:\/\/www.nextgov.com\/cybersecurity\/2026\/05\/irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says\/413792\/?orefu003dng-homepage-river<\/a><\/p>\n<p>Publish Date: <a href=\"publish_date]\">2026-05-27 15:42:00<\/a><\/p>\n<p>Source Domain: <a href=\"www.nextgov.com\">www.nextgov.com<\/a><\/p>\n<p>Author: <a href=\"\"><\/a><\/p>\n<p> Using an unordered list, summarize the following article with between 4 and 8 key points.<br \/>\nTehran\u2019s hackers have grown more organized, more coordinated and more willing to use artificial intelligence for influence operations in recent months \u2014 and they have demonstrated many of those capabilities since the war with Iran began, according to Israel\u2019s top cyberdefense official.In a Tuesday interview, the director-general of Israel\u2019s National Cyber Directorate, Yossi Karadi, said Iranian state-aligned groups are further sharing cyber tools among each other and using AI to polish disinformation and recruitment messages.At the same time, Karadi said he is pressing major AI labs for controlled access to powerful models like Anthropic\u2019s Mythos, arguing that governments need the same tools attackers are seeking to adopt.In the last year, Iran\u2019s state-backed hacking units have increasingly \u201cbegun to talk to each other, and then collaborate with each other, and then even sometimes exchange information\u201d among themselves, he said. \u201cOf course, when they work together, they can work more efficiently and better.\u201dDuring the recent war, Iran has sent hundreds of thousands of text messages to Israelis as part of a deception and influence campaign, he said.\u00a0\u201cIn some cases, they\u2019d send messages like, \u2018don\u2019t go to the bomb shelters because they are closed,\u2019\u201d Karadi said, adding that other messages sought to recruit Israelis for intelligence-sharing.For a while, those messaging campaigns were in \u201cvery bad Hebrew, so you understand, \u2018okay, it\u2019s nonsense,\u2019\u201d Karadi said. But more recently, AI has helped Tehran improve message quality.\u00a0In March, Israel said it bombed a key Iranian cyberwarfare operation center. Asked about how that attack and similar efforts affected Tehran\u2019s hacking prowess, Karadi said only that the nation\u2019s cyberactivity largely fluctuated, depending on the intensity of the conflict.When bombing campaigns against Iran intensified, hacking activity tended to decrease because it was harder for state operatives to access physical assets like computers and other equipment needed for cyberattacks, he said. Conversely, when strikes slowed, state hacking groups would have more room to reorganize and collaborate again.As the U.S. and Iran work to implement a peace agreement to end the war, Karadi said there is little expectation that cyber activity from either side will stop, arguing that any party can deny involvement in a cyberattack, compared to a physical strike using missiles or bombs.\u00a0\u201cThere is no ceasefire in cyber,\u201d he said. \u201cYou cannot force any agreement on cyber.\u201d\u00a0Over the last few months, Iran has compromised a swath of smaller Israeli organizations and a handful of American targets. Pro-Iran hackers have targeted various U.S. industrial control systems, federal officials said early last month. One group, likely state-affiliated, also claimed to have compromised medical technology giant Stryker. And just last week, researchers said Iran-linked hackers deployed a slew of cyberespionage techniques that targeted the U.S., Israel, the UAE and other Middle Eastern nations.Asked if the cybersecurity community underestimated the strength of Iran\u2019s hacking ecosystem, Karadi said he would only speak for Israel, and asserted they \u201cobviously did not underestimate\u201d Tehran. Since the 12-Day War last year, \u201cwe were in an 100% alert situation, and we have been preparing ourselves for high-scale cyber war,\u201d he said.\u00a0The remarks provide a window into how Israeli officials believe Iran\u2019s cyber apparatus has adapted under wartime pressure and amid negotiations now underway between the U.S. and Tehran that could end the war, which began in late February.Karadi conducted the interview as part of a visit to Washington this week, where he said he has planned meetings with the FBI, the Cybersecurity and Infrastructure Security Agency, U.S. Cyber Command and representatives from industry.In those meetings, he said officials have been discussing advanced cyber-focused AI models like Anthropic\u2019s Mythos, which have quickly become central to global cyber policy talks. Asked whether Israeli institutions have been given access to those systems, he said the effort is a work in progress.\u201cI haven\u2019t succeeded in it now, but hopefully I will,\u201d he said, adding that he is trying to access such models to scan Israeli government organizations for vulnerabilities. He declined to name specific AI companies he is engaging with.In early April, Anthropic launched Project Glasswing, an initiative with major companies designed to secure critical software across the globe using its Mythos model. It\u2019s been withheld from public release amid concerns over its highly skilled hacking capabilities. About a month later, OpenAI unveiled GPT-5.5-Cyber, a similarly advanced model that was also reserved for verified organizations to prevent the acceleration of offensive cyber tools.The White House and the federal government swiftly responded and worked to craft an executive order focused on AI and cybersecurity, but its signing was postponed last week amid overregulation concerns from industry.Representing a government cyberdefense organization, Karadi said such models worry him.\u00a0\u201cWhen you give [an attacker] a new tool, he needs to only use it at one time and one place. But I need to implement this tool at all the places and all the time,\u201d he said.\u00a0He expects more of these models to proliferate in the coming months, and he considers them to now be the \u201cmain threat\u201d in the cybersecurity world.\u201cI think that our world is getting more and more digital, AI-based and cloud-based,\u201d he said. \u201cIt will take us to a permanent state of cyber warfare, some of the time against enemies that you know. But most of the time \u2014 against ghosts.\u201d<\/p>\n<p><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Iran\u2019s hackers are coordinating more closely, Israel\u2019s top cyberdefense official says https:\/\/www.nextgov.com\/cybersecurity\/2026\/05\/irans-hackers-are-coordinating-more-closely-israels-top-cyberdefense-official-says\/413792\/?orefu003dng-homepage-river Publish Date: 2026-05-27&#8230;<\/p>\n","protected":false},"author":1,"featured_media":221246,"comment_status":"closed","ping_status":"","sticky":false,"template":"","format":"standard","meta":{"fifu_image_url":"https:\/\/cdn.nextgov.com\/media\/img\/cd\/2026\/05\/27\/052726IranNG\/open-graph.jpg","fifu_image_alt":"","footnotes":""},"categories":[15],"tags":[26,20,24],"class_list":["post-221245","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-cybersecurity","tag-ai","tag-artificial-intelligence","tag-cybersecurity"],"_links":{"self":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/221245"}],"collection":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/comments?post=221245"}],"version-history":[{"count":1,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/221245\/revisions"}],"predecessor-version":[{"id":221247,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/posts\/221245\/revisions\/221247"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media\/221246"}],"wp:attachment":[{"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/media?parent=221245"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/categories?post=221245"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/testing.news-you-need.com\/index.php\/wp-json\/wp\/v2\/tags?post=221245"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}