Back

Israeli Emergency Agencies Exposed by Cybersecurity Failures, State Comptroller Reports

Severity: High (Score: 74.0)

Sources: Israeldefense.Co.Il, Haaretz, tps.co.il, Jns

Published: 2026-05-27 · Updated: 2026-05-27

Keywords: israeli, state, ministries, cybersecurity, emergency, agencies, exposed

Severity indicators: emergency

Summary

A report by Israel's State Comptroller reveals significant cybersecurity gaps in emergency agencies and government ministries, leaving them vulnerable to Iranian cyber threats. The report highlights a 55% increase in cyberattacks in 2025 and identifies compromised databases and inadequate remote work systems as major vulnerabilities. Key institutions, including the Israel Police and the Ministry of Foreign Affairs, are criticized for poor cyber preparedness and outdated systems. The Foreign Ministry's cyber defense policy has not been updated since 2018, and sensitive data is stored in insecure locations. The report emphasizes the urgent need for improved coordination and updated cyber defense measures across all agencies. Key Points: • Israeli emergency agencies face critical cybersecurity gaps, particularly against Iranian threats. • A 55% increase in cyberattacks was reported in 2025, highlighting systemic vulnerabilities. • The Ministry of Foreign Affairs has not updated its cyber defense policy since 2018, risking sensitive data.

Detailed Analysis

**Impact** Israeli emergency agencies, government ministries, and public-sector bodies are affected, including the Israel Police, Fire and Rescue Authority, Courts Administration, Ministries of Foreign Affairs, Construction and Housing, Economy and Industry, and the Prime Minister’s Office. The cyberattack disrupted government operations for several weeks and exposed sensitive databases containing millions of personal records, including housing applicants and subsidy recipients. Approximately 4.6 million citizens are registered in the national ID system, but only 16% of government services are integrated, limiting digital resilience. The Foreign Ministry experienced a sharp rise in cyber incidents, with sensitive data stored in broadly accessible locations. **Technical Details** The attack exploited vulnerabilities in remote access systems that remained in use months after the Israel National Cyber Directorate ordered their removal. Penetration testing revealed weaknesses in remote work platforms used by emergency agencies. The attack vector involved compromised databases and insufficient cyber defense coordination. Specific malware, CVEs, or IOCs were not disclosed in the available reports. **Recommended Response** Immediate removal and replacement of vulnerable remote access systems is critical, alongside full distribution and enforcement of updated cyber defense guidelines across all emergency and government agencies. Agencies should unify authentication systems to reduce fragmentation and improve oversight. Enhanced risk management, access controls, and database registration compliance must be enforced, particularly in high-value targets like the Foreign and Construction Ministries. Continuous monitoring for unusual access patterns and coordination between cyber defense units should be prioritized.

Source articles (4)

  • Cyberattack That Paralyzed Israeli Ministries Was Preventable, State Report Says — Haaretz · 2026-05-26
    A cyberattack that disrupted work at Israeli government ministries for several weeks early last year occurred months after the Israel National Cyber Directorate ordered vulnerable remote-access softwa…
  • State Comptroller Warns of Major Cybersecurity Gaps Across Israeli Government Systems — Israeldefense.Co.Il · 2026-05-27
    New 2026 report finds deficiencies in cyber preparedness, digital services, and information security at key ministries and emergency agencies amid growing cyber threats A sweeping new report by the Of…
  • Cybersecurity gaps leave Israeli emergency agencies exposed, state comptroller warns — Jns · 2026-05-27
    Widespread cybersecurity failures across Israeli emergency agencies and government ministries have left the country significantly exposed to Iranian cyber threats, Israel’s State Comptroller warned in…
  • 55% increase in attacks — tps.co.il · 2026-05-27

Timeline

  • 2023-10-07 — Hamas attacks increase cyber threats: Following the Hamas attacks, the National Cyber Directorate issued updated cyber defense guidelines.
  • 2025 — 55% increase in cyberattacks reported: The National Cyber Directorate noted a significant rise in cyberattacks throughout 2025.
  • 2025-01-05 — Flawed remote access system shut down: Approximately 65% of ministries continued using a vulnerable remote access system until January 2025.
  • 2026-05-26 — State Comptroller report published: The report details major cybersecurity deficiencies across Israeli government systems, emphasizing urgent reforms.
  • 2026-05-27 — State Comptroller warns of cybersecurity gaps: The report calls for immediate corrections to vulnerabilities affecting emergency agencies and ministries.

Related entities

  • Swords Of Iron War (Campaign)
  • Israel (Country)
  • CWE-862 - Missing Authorization (Cwe)
  • Government (Industry)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed