CISA, the FBI, the NSA, the Department of Energy, and additional U.S. government partners issued a joint advisory warning that threat actors are actively targeting internet-exposed Automatic Tank Gauge systems — the hardware that monitors fuel and liquid levels at storage facilities across four critical infrastructure sectors.
ATG Vulnerabilities Exploited Across Energy, Chemical, Food, and Transportation Sectors
Automatic Tank Gauge systems are the monitoring hardware installed at fuel storage facilities, chemical plants, agricultural sites, and transportation depots to track tank levels, detect leaks, and control pump operations. Compromising these systems gives attackers the ability to manipulate the physical processes they oversee — not just exfiltrate data.
The joint advisory identifies the attack methods being used: authentication bypass vulnerabilities, hardcoded credentials, operating system command-execution flaws, SQL injection, and privilege escalation weaknesses. These are not novel exploit categories. They represent foundational security failures in ATG systems that remain internet-exposed without adequate network segmentation, patching, or credential management. The advisory’s multi-agency co-signatures — spanning CISA, FBI, NSA, DOE, and other partners — reflect the severity with which the U.S. government views the current threat.
Hardcoded Credentials and OS Command Injection in Internet-Exposed ATG Hardware
Many ATG systems were designed for operational simplicity in isolated industrial environments and were never intended to face the internet directly. As connectivity requirements evolved, however, operators connected these devices to public-facing networks without retrofitting them with the authentication controls that internet exposure demands. Hardcoded credentials — factory-set usernames and passwords embedded in firmware — cannot be changed by operators and remain valid indefinitely, providing any attacker who knows them with immediate access.
Operating system command injection vulnerabilities in ATG firmware allow attackers to run arbitrary shell commands on the underlying system, extending from the ATG management interface to the broader network environment. SQL injection flaws in ATG web interfaces can expose database contents, including stored credentials and configuration data that enable lateral movement to other industrial systems.
Physical Consequences and the Four Sectors at Risk from ATG Compromise
Successful ATG compromise carries physical-world consequences beyond typical IT breaches. Attackers who gain access to these systems can alter network settings and product identifiers, modify recorded tank volumes and pump control parameters, disable overflow alerts and leak detection systems, and prevent accurate tank level monitoring. Disabling overflow alerts at a fuel storage facility creates environmental incident risk. Falsifying tank readings can disrupt fuel supply management at energy distribution points. At chemical facilities, manipulating level monitoring can affect process safety systems.
The four sectors named in the advisory — Energy, Chemical, Food and Agriculture, and Transportation Systems — represent the range of facilities where ATG systems are deployed and where physical disruption carries consequences beyond the targeted organization.
Iranian Actor Context and the Advisory’s Attribution Signal
CNN reporting from May 2026 indicated that Iranian hackers were likely responsible for a series of intrusions at gas station ATG systems in the period before the advisory. The June 3 joint advisory represents the formal multi-agency warning that followed those reports — though the advisory stops short of definitive public attribution.
The Iranian actor context connects to an established pattern of state-linked campaigns targeting U.S. energy and critical infrastructure. Internet-exposed industrial control systems have repeatedly appeared as entry points in these campaigns; ATG systems represent a subset of the broader ICS/OT attack surface that threat actors with physical disruption objectives have long sought to exploit.
The advisory’s core guidance centers on network architecture: ATG systems should not be accessible from the public internet. Organizations with internet-facing ATG deployments should implement firewall restrictions and VPN-gated access immediately, apply available firmware patches, rotate or replace any default credentials, and audit access logs for evidence of unauthorized activity.
