U.S.-Iranian relations are under strain, and recent events have reignited tensions between the two countries. Such global events can quickly become up close and personal when a cyberattack takes place at your organization, your bank, your healthcare provider, or even your local power company. That said, organizations can take proactive steps to help strengthen cybersecurity defenses in the wake of increasing offensive security operations. One of these steps is threat modeling, which is a fundamental aspect of developing and prioritizing information security efforts.
On Jan. 3, 2020, a U.S. airstrike killed Maj. Gen. Qassem Soleimani of the Islamic Revolutionary Guard Corps (IRGC), reigniting tensions between the United States and Iran. Soleimani was a member of the IRGC’s Quds Force, a special operations unit of the IRGC that focuses on military intelligence and unconventional warfare. Days later, on Jan. 7, Iran responded with airstrikes on two bases housing U.S. forces in Iraq. Many presume that this relatively small kinetic response will be the end of Iran’s retaliatory operations.