What You Need to Know About Iranian Counterattacks
Cyber retaliation is real and veterans need to be ready.
When we talk about war, many still picture bombs in the air and boots on the ground. But those images, while emotionally resonant, are increasingly outdated.
Today, some of the most consequential battles happen behind keyboards.
The U.S., Iran, China, and Russia are among the world’s most advanced cyber powers. And when tensions flare, cyber weapons are often the first tools of retaliation.
Over the weekend, the United States launched targeted strikes on Iranian nuclear facilities. Iran then attacked our forces in Qater. But here’s the truth: Iran was already striking back. Not with missiles at first, but with malware.
Three weeks ago, hackers infiltrated UNF, a major supplier to Whole Foods. This resulted in a collapsed inventory system, empty shelves, and disrupted supply chains. Customers were confused. But the message was clear: this was no glitch. It was a warning.
Hershey and Tyson Foods, two of America’s largest food companies, made aware of what might be coming, issued quiet alerts to staff before the U.S. even launched its latest operation—codenamed Midnight Hammer.
If you’re reading this, you might think: What does this have to do with me?
Everything.
If you think cyberattacks don’t affect you, think again. You don’t need to work in the military to be caught in the crossfire.
Iran’s Robust Cyber Arsenal
As a Commissioner on the US Cyberspace Solarium Commission, the 5th domain of war (after land, sea, air & space), cyber kept me up at night. Iran uses cyber as a key pillar in their asymmetric strategy. Hopefully you recognize their digital tools: 1) Phishing (email campaigns to steal credentials); 2) Denial of Service Attacks (disrupts services and renders critical infrastructure temporarily inaccessible); 3) Targeting US Critical Infrastructure (85% of our critical intrastructure is in the private sector, think electrical grids and water plants); 4) Malware (previousky Iran used ‘Shamoon’ to delete data); and Disinformation (using AI to leverage social media with fake images, news and videos)
Why Americans Are at Greater Risk
Let’s hope the ceasefire between Iran, Israel, and the US that was announced by President Trump holds. Those of us who’ve seen combat - I lost 19 of my brothers in Baghdad, Iraq - are the ones who crave peace the most. We fight battles on behalf of our nation in hopes that our children don’t have to.
But Americans - especially American businesses - have been getting crushed.
Veterans Have Been Targets
Veterans are among the most respected citizens in this country—and among the most vulnerable when it comes to cyberattacks.
According to multiple studies:
71% of Veterans and service members have been victims of cybercrime or identity theft—compared to 60% of the general population.
Veterans are 40% more likely to be victims of online exploitation.
Between 2017 and 2021, the military community reported over $820 million in cybercrime-related losses.
Veterans are high-value cyber targets for a variety of reasons.
Targeted by Scammers: Scammers often pose as the VA, healthcare providers, or military support programs. All they need is a little personal info to commit fraud.
Social Engineering: Your service makes you a respected figure in your community—and an ideal target for phishing scams and malware traps.
Tech Gaps: Not all Veterans are fluent in the latest digital tools, which makes it easier for scammers to exploit outdated systems or lax security habits.
Isolation: Older Vets, especially those in hospice or retirement care, may be more vulnerable when seeking online connection or support.
Data Exposure: The military’s historical reliance on Social Security numbers and centralized records has left a digital trail vulnerable to breaches.
What You Can Do: Basic Cyber Hygiene
Here’s what every Veteran should be doing right now:
Enable Two-Factor Authentication (2FA) on all accounts—banking, email, VA, and benefits portals. This is your first line of defense. If someone gets your password, 2FA adds a second gate—usually a code sent to your phone or an app. Set it up on all critical accounts, even your social media.
Use strong, unique passwords: Hackers use automated tools that can guess millions of common passwords in seconds. Use long, unique passphrases or get a password manager like LastPass or 1Password. It’s worth it.
Stay skeptical. Never give out personal info over phone, text, or email unless you initiated the contact.
Update your software. Yes, those notifications are annoying. But they patch vulnerabilities hackers exploit.
Watch your Wi-Fi: Avoid checking bank accounts or logging into sensitive platforms on public Wi-Fi (like at the airport or coffee shop). If you must, use a Virtual Private Network (VPN).
Check with the VA or Cybercrime Support Network if you’re unsure about a message or need help recovering from a breach.
Veteran Success: The Cybersecurity Gap
The world needs 3.4 million cybersecurity professionals, and Veterans are uniquely equipped to fill the gap.
Having a security clearance, like most military personnel have, gives you a leg up. Also, who’s better equipped to defend against a threat you can’t always see, under pressure, with lives on the line?
Veterans already know how to lead under stress, assess risk in real time, and secure critical infrastructure. You've done it in combat zones, at sea, in foreign embassies—and now, the battlefield is digital.
Hospitals, power grids, banks, small businesses, even election systems—they’re all vulnerable. And they all need protectors.
Veterans aren’t just potential hires. They’re mission-ready.
This isn’t just about defense. It’s about building the future.
America is strongest when her warriors come home and keep leading—in the classroom, the boardroom, and yes, the server room.
No matter where you stand politically, we can all agree: our Veterans deserve to be safe, informed, and empowered in a digital world that changes by the hour.
So take the time. Tighten your settings. Call your buddy. And keep standing guard—not just for your country, but for yourself.
Because the fight might be digital, but the courage is still very real.
The Honorable Patrick J. Murphy is a Wharton lecturer, Vetrepreneur, and the 32nd Army Under Secretary after earning the Bronze Star for service in Baghdad, Iraq as an All-American with the 82nd Airborne Division—@PatrickMurphyPA on Instagram and Twitter.
I agree with all the warnings. Unfortunately, we can't be safe from hackers, they are everywhere... Also, smart intelligence is a step so that we don't know who is behind it... Thanks for the advice.
Timely article and sound advice. Just discussed this topic at staff meeting this morning. Stay vigilant.