[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"focus:zionsiphon-malware-designed-to-sabotage-water-treatment-systems-mo4lcn8j":3},{"item":4},{"id":5,"title":6,"slug":7,"summary":8,"severity":9,"category":10,"cve_ids":11,"affected_products":12,"action_required":14,"article_ids":15,"ioc_summary":17,"source_urls":18,"status":20,"expires_at":21,"created_at":22,"updated_at":23,"articles":24},"53356d00-be43-4c25-a9f2-79d0e4d2ef84","ZionSiphon malware designed to sabotage water treatment systems","zionsiphon-malware-designed-to-sabotage-water-treatment-systems-mo4lcn8j","Darktrace identified ZionSiphon, malware purpose-built to sabotage water treatment and desalination facilities by manipulating chlorine levels and hydraulic pressures. The malware currently contains a flawed XOR encryption that renders it non-functional, but a corrected variant could cause severe operational damage. Israeli water infrastructure is the confirmed target, though similar facilities worldwide should assume risk.","critical","advisory",[],[13],"Darktrace","Immediately inventory all OT\u002FICS assets in water treatment environments. Hunt for ZionSiphon IOCs and suspicious geolocation checks or file validation logic in network traffic. Isolate any infected systems and escalate to facility operators and CISA.",[16],"16b946a7-e0cb-45fc-af3b-8b2263546881",null,[19],"https:\u002F\u002Fwww.bleepingcomputer.com\u002Fnews\u002Fsecurity\u002Fzionsiphon-malware-designed-to-sabotage-water-treatment-systems\u002F","archived","2026-04-20T17:08:26.721+00:00","2026-04-18T17:08:32.881522+00:00","2026-04-20T18:09:46.632253+00:00",[25],{"id":16,"title":6,"url":19}]