Details are emerging of how the US military employed cyber capabilities to disrupt Iranian air missile defense systems during Operation Midnight Hammer, a coordinated effort to target Iran's nuclear program. The operation focused on nuclear sites at Fordow, Natanz, and Esfahan. This disruption assisted in preventing Iran from launching surface-to-air missiles against US warplanes that entered Iranian airspace, according to US officials. The strikes occurred on 21 June 2025, involving seven B-2 Spirit stealth bombers deploying 14 massive ordnance penetrators, Tomahawk missiles from a submarine, and 125 aircraft, including refuelers, fighter jets, and decoys. All three nuclear sites were hit within less than 30 minutes.[1]
US operators, supported by intelligence from the National Security Agency, targeted a specific "aim point," a mapped node on a computer network, such as a router, server, or peripheral device in a separate military system connected to the nuclear sites. This approach avoided the challenge of infiltrating the fortified nuclear facilities directly.
Officials did not disclose the specific type of device attacked. Experts suggest that such operations exploit vulnerabilities in interconnected systems to affect broader networks. This action represents one of the more complex engagements by Cyber Command against Iran since its establishment nearly 16 years ago. Following enhancements to its offensive capabilities during the first Trump administration, Cyber Command had previously engaged with the Islamic Revolutionary Guard Corps and Iranian hacker groups, leading up to the 2020 presidential election.
General Dan Caine, Chairman of the Joint Chiefs of Staff, commended Cyber Command's contribution during a Pentagon press conference on 22 June 2025, following the conclusion of Operation Midnight Hammer. He highlighted its support for the "strike package" and thanked cyber operators for enabling the mission. A US Cyber Command spokesperson stated: “US Cyber Command was proud to support Operation Midnight Hammer and is fully equipped to execute the orders of the Commander-in-Chief and the Secretary of Defense at any time and in any place."
Army Lieutenant General William Hartman, acting chief of Cyber Command and the National Security Agency, described the integration of cyber capabilities as equivalent to kinetic ones, noting: “We've really graduated to the point where we’re treating a cyber capability just like we would a kinetic capability, not sprinkling cyber on."
Cyber Command received similar recognition for its role in Operation Absolute Resolve in Venezuela, where it disrupted power in Caracas, air defense radar, and handheld radios to facilitate the capture of President Nicolás Maduro. General Caine mentioned that cyber elements "began layering different effects" to "create a pathway" for commandos during a press conference at Mar-a-Lago.
US Lawmakers received classified briefings on the digital operations against Iran and Venezuela. They are requesting additional details, with some advocating for public disclosure to aid recruitment. Senator Mike Rounds (R-SD), chair of the Senate Armed Services cyber subcommittee, commented during a hearing: “Venezuela has been in the news and a lot of discussion about the fact that this was a good example of what happens when you combine all of the joint forces, including cyber operations.” Unnamed U.S. government officials have emphasized the routine use of cyber capabilities but have provided no further details.
This article is shared at no charge for educational and informational purposes only.
Red Sky Alliance is a Cyber Threat Analysis and Intelligence Service organization. We provide indicators of compromise information via a notification service (RedXray) or an analysis service (CTAC). For questions, comments, or assistance, please get in touch with the office directly at 1-844-492-7225 or feedback@redskyalliance.com
- Reporting: https://www.redskyalliance.org/
- Website: https://www.redskyalliance.com/
- LinkedIn: https://www.linkedin.com/company/64265941
Weekly Cyber Intelligence Briefings:
REDSHORTS - Weekly Cyber Intelligence Briefings
https://register.gotowebinar.com/register/5207428251321676122
[1] https://www.cybersecurityintelligence.com/blog/cyber-commands-role-in-disrupting-iranian-air-defences-9104.html
Comments