Back

Israeli Emergency Agencies Vulnerable to Cyber Threats, State Comptroller Reports

Severity: High (Score: 77.0)

Sources: tps.co.il, Jns, Haaretz

Published: 2026-05-27 · Updated: 2026-05-27

Keywords: israeli, state, ministries, cybersecurity, emergency, agencies, exposed

Severity indicators: emergency

Summary

A report by Israel's State Comptroller revealed significant cybersecurity deficiencies across emergency agencies and government ministries, exposing them to Iranian cyber threats. The report highlighted a 55% increase in cyberattacks in 2025, with critical vulnerabilities in remote access systems and a lack of coordination among key institutions. Compromised databases and unaddressed security weaknesses were noted, particularly in the Foreign Ministry, which failed to secure sensitive data. The National Cyber Directorate's guidelines issued post-October 2023 attacks were not fully implemented, leaving agencies unprepared. The report emphasizes the urgent need for corrective measures to protect sensitive state information. Key Points: • Israeli emergency agencies face critical cybersecurity gaps, particularly against Iranian threats. • A 55% increase in cyberattacks was reported in 2025, highlighting systemic vulnerabilities. • The Foreign Ministry was criticized for outdated systems and poor data security practices.

Detailed Analysis

**Impact** Israeli emergency agencies, government ministries, and key institutions including the Israel Police, Fire and Rescue Authority, Courts Administration, Foreign Ministry, and several ministries were affected by cybersecurity failures. The disruption lasted several weeks early in 2025, impacting operational continuity and exposing sensitive state and civilian data, including millions of personal records at the Construction and Housing Ministry. Diplomatic missions abroad faced increased cyber incidents, and critical government digital services remain underutilized, affecting approximately 4.6 million citizens. **Technical Details** The primary attack vector involved vulnerable remote-access software that remained in use months after the Israel National Cyber Directorate ordered its removal. The compromised systems included databases and remote work infrastructure with known security weaknesses. Specific malware, CVEs, or IOCs were not disclosed in the reports. The attacks exploited systemic deficiencies in cyber defense coordination and outdated policies, particularly within the Foreign Ministry and emergency agencies. **Recommended Response** Immediate removal and replacement of vulnerable remote-access systems is critical, alongside full distribution and enforcement of updated cyber defense guidelines across all emergency and government agencies. Agencies should unify authentication systems to reduce fragmentation and improve security posture. Continuous monitoring for unauthorized access and coordination between institutions must be enhanced. No specific malware detection or patching details were provided in the reports.

Source articles (3)

  • Cyberattack That Paralyzed Israeli Ministries Was Preventable, State Report Says — Haaretz · 2026-05-26
    A cyberattack that disrupted work at Israeli government ministries for several weeks early last year occurred months after the Israel National Cyber Directorate ordered vulnerable remote-access softwa…
  • Cybersecurity gaps leave Israeli emergency agencies exposed, state comptroller warns — Jns · 2026-05-27
    Widespread cybersecurity failures across Israeli emergency agencies and government ministries have left the country significantly exposed to Iranian cyber threats, Israel’s State Comptroller warned in…
  • 55% increase in attacks — tps.co.il · 2026-05-27

Timeline

  • 2023-10-07 — Hamas attacks prompt cybersecurity guideline updates: Following the October 2023 attacks, the National Cyber Directorate issued updated cyber defense guidelines.
  • 2025-01-20 — Flawed remote access system shut down: A vulnerable remote access system used by 65% of ministries was finally shut down after months of exposure.
  • 2025-12-01 — Cyberattack disrupts Israeli ministries: A cyberattack paralyzed work at Israeli government ministries for weeks, occurring after warnings to remove vulnerable software.
  • 2026-05-26 — State Comptroller report released: The State Comptroller's report highlighted severe cybersecurity gaps across Israeli emergency agencies, necessitating immediate action.

Related entities

  • Israel (Country)
  • Government (Industry)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed