Nozomi Networks A.I CyberSecurity Scoring
Nozomi Networks
Company Information
Website:https://www.nozominetworks.com
Employees number:384
Number of followers:96,537
NAICS:541514
Industry Type:Computer and Network Security
Homepage:nozominetworks.com
Nozomi Networks Risk Score (AI oriented)
Between 700 and 749
Nozomi NetworksComputer and Network Security
Updated:
03/04/2026
03/04/2026
732/1000
Moderate
Ba
Nozomi Networks Global Score (TPRM)
xxxx
Nozomi NetworksComputer and Network Security
Score locked

Nozomi NetworksModerate
Current Score
732Ba (MODERATE)
01000
2 incidents
-20 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JULY 2026
734
JUNE 2026
734
MAY 2026
732
APRIL 2026
732
MARCH 2026
731
FEBRUARY 2026
731
JANUARY 2026
730
DECEMBER 2025
729
NOVEMBER 2025
728
OCTOBER 2025
727
SEPTEMBER 2025
726
AUGUST 2025
725
JULY 2025
744
Cyber Attack
11 Jul 2025 • Nozomi Networks
Nozomi Networks, CyberAv3ngers and Homeland Justice: Nozomi finds 133% surge in Iranian cyberattacks targeting US, as transportation and manufacturing most affected
Iranian Cyberattacks Surge 133% Amid Geopolitical Tensions, Targeting U.S. Critical Infrastructure
724
CRITICAL-20
US-NOZTRE1774333876
Iranian Cyberattacks Surge 133% Amid Geopolitical Tensions, Targeting U.S. Critical Infrastructure
Nozomi Networks Labs reported a sharp escalation in cyberattacks linked to Iranian threat groups, with a 133% increase in incidents during May and June 2024 compared to the previous two months. The surge peaking at 18 attacks in May before declining to 10 in June coincided with heightened regional conflicts involving Iran, with U.S. organizations as the primary targets.
At least 28 confirmed attacks were attributed to six Iranian state-sponsored or affiliated groups: MuddyWater, APT33, OilRig, CyberAv3ngers, FoxKitten, and Homeland Justice. The transportation and manufacturing sectors bore the brunt of the activity, though critical infrastructure, energy, and government entities were also heavily targeted.
### Key Threat Actors & Their Campaigns
- MuddyWater emerged as the most active, compromising at least five U.S. companies in transportation and manufacturing. The group, operational since 2017, has historically focused on the Middle East but expanded its reach to North America, Europe, Asia, and the Middle East, targeting government, telecommunications, and energy sectors.
- APT33 conducted attacks against three U.S. firms, with infrastructure traced to operations spanning North America, Europe, the Middle East, and Asia, including Germany, France, Saudi Arabia, and Japan. The group’s focus on strategic geopolitical and economic hubs suggests intelligence-gathering and disruption objectives.
- OilRig maintained its long-standing campaign against Gulf region targets, including energy, government, and telecommunications sectors, but also extended operations to the U.S., Spain, and Turkey. Attack paths originating from Iran indicate a broader geopolitical and intelligence-driven agenda.
- CyberAv3ngers, known for targeting operational technology (OT), reused an IP address from a prior attack and deployed the OrpaCrab (IOCONTROL) malware, first identified in December 2023. The group’s recent activity targeted the U.S., Ukraine, Iraq, and Cyprus, with a focus on critical infrastructure and industrial sectors.
- FoxKitten concentrated on Israel, Greece, and North Macedonia, aligning with its history of espionage and long-term access within government and critical infrastructure networks in the Eastern Mediterranean and Middle East.
- Homeland Justice, a hacktivist collective, demonstrated a global reach, striking targets in the U.S., Canada, Saudi Arabia, India, and Australia. The group’s politically motivated attacks spanned critical infrastructure and government entities, reflecting a broad disruption strategy.
### Geopolitical Context & U.S. Response
The surge in Iranian cyberactivity follows escalating regional tensions, prompting U.S. security agencies to issue warnings last week. Critical infrastructure operators were advised to monitor for threats and isolate OT/ICS assets from public internet access, particularly those with ties to Israeli defense or research entities. The agencies emphasized the heightened risk to the defense industrial base (DIB) and other high-value sectors in the near term.
Nozomi Networks confirmed that its threat intelligence feeds including a Mandiant TI Expansion Pack already contain signatures to detect these groups, though the broader threat landscape underscores the expanding scope and sophistication of Iranian cyber operations.
INCIDENT DETAILS -
TYPE
MOTIVATION
IMPACT
REFERENCES
AUGUST 2024
755
Cyber Attack
24 Aug 2024 • Nozomi Networks
Port of Seattle Ransomware Attack
Cyberattack on the Port of Seattle
739
CRITICAL-16
NOZ638092125
On August 24, 2024, the Port of Seattle fell victim to a targeted cyberattack that compromised its operational infrastructure, including cargo handling, scheduling, and logistics systems. As one of the largest U.S. ports, the disruption cascaded across national and international trade networks, causing significant operational delays and financial losses. The attack exposed critical vulnerabilities in maritime cybersecurity, with sensitive data—potentially including trade secrets, financial records, or partner communications—being compromised. The incident underscored the growing threat cybercrime poses to global supply chains, as port authorities scrambled to mitigate the fallout while facing reputational damage and potential long-term trust erosion among stakeholders. The attack’s ripple effects extended beyond immediate logistical chaos, raising concerns about the resilience of essential infrastructure against increasingly sophisticated digital threats.
INCIDENT DETAILS -
TYPE
IMPACT
DATA BREACH
REFERENCES
Frequently Asked Questions
?
What is the current A.I Rankiteo Cyber Score for Nozomi Networks ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in June 2026 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in May 2026 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in April 2026 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in March 2026 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in February 2026 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in January 2026 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in December 2025 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in November 2025 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in October 2025 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in September 2025 ??
What was Nozomi Networks's A.I Rankiteo Cyber Score in August 2025 ??
What is the average per-incident point impact on Nozomi Networks's A.I Rankiteo Cyber Score over the past 12 months ??
Where can I access detailed records of all cyber incidents associated with Nozomi Networks ??
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ??
Where can I view Nozomi Networks's profile page on Rankiteo ??
How accurate is the A.I Rankiteo Risk Scoring methodology ?