Automatic tank gauges (ATGs) at gas stations in several U.S. states were reportedly breached by suspected Iranian hackers, CNN reported on Friday.The news outlet cited unnamed sources who were briefed by U.S. officials about the attacks, which targeted ATG systems that were exposed to the internet without password protection. Officials were said to have made the attribution based in part on Iran’s past targeting of gas tank systems. The report follows alerts published last month by the Energy Marketers of America (EMA) trade association, which published an advisory on April 14, 2026, warning of suspected Iran-backed attacks on ATGs nationwide. The EMA said it specifically knew of attacks on systems in Tennessee, with one convenience store chain having 15 of its tanks affected. In some cases, fuel tank and sensor information were deleted by attackers, EMA said.The EMA advisory further stated that the attacks involved “several successful attempts” to change the settings on internet-exposed Veeder-Root TLD-350 and TLS-450 Plus series consoles without password protection. Veeder-Root is the most commonly used ATG vendor, according to EMA.In a second advisory published around April 30, which was republished by the Texas Food & Fuel Association, states the Tennessee Fuel & Convenience Store Association (TFCA) reported the attacks and that the EMA and TFCA worked with the Department of Energy’s Cybersecurity, Energy Security an Emergency Response (DOE CESER) team and the Cybersecurity and Infrastructure Security Agency (CISA) to coordinate a response to the attacks.The April 30 advisory included a link to a threat memo from the DOE Energy Threat Analysis Center (ETAC) regarding ATG manipulation by cyber threat actors, but the memo no longer appears to be available online. It is unclear if the attacks reported by EMA are the same as those referred to in the CNN report, although the details appear similar."The Cybersecurity and Infrastructure Security Agency (CISA) is aware of reports of malicious cyber activity targeting U.S. based automated tank gauge (ATG) systems across multiple critical infrastructure sectors. We encourage all organizations using ATG systems to take steps to protect them, including ensuring ATG systems are not exposed to the internet, implementing strong passwords, and auditing and monitoring logs," CISA Acting Director Nick Andersen said in a statement provided to SC Media Tuesday morning. "As always, CISA stands ready to provide voluntary support and cybersecurity to aid organizations in responding to and recovering from incidents."
OT Security, Critical Infrastructure Security, Government security
Iran suspected in breaching automatic tank gauges at US gas stations

Get daily email updates
SC Media's daily must-read of the most current and pressing daily news
You can skip this ad in 5 seconds



