UAE logs 700k Iran‑linked attacks daily

Cybersecurity is the story here — not one spectacular breach, but a constant barrage. UAE officials say the country is now dealing with 500,000 to 700,000 cyberattack attempts a day, with some later remarks putting the figure closer to 800,000. The point is not the exact top-line number. The point is that the attacks are now industrialized, AI-assisted, and persistent. And in the UAE’s telling, a meaningful share is tied to Iran-linked actors using tools like ChatGPT, deepfakes, and coordinated influence tactics to hit both systems and people. ### What actually changed? The new thing is the public warning. On May 1, the Abu Dhabi Emergency, Crisis and Disaster Management Centre released a crisis-time cybersecurity guide that spells out the threats it thinks surge during emergencies. It named six big ones: phishing and online fraud, account breaches, malware, identity theft and a "be careful online" message into a concrete list of attack patterns residents and institutions are supposed to watch for right now. ### Why is Iran in this story? Because Dr. Mohammed Al Kuwaiti, who chairs the UAE Cyber Security Council, explicitly said hostile actors including Iran have been using AI tools to support cyber operations against the UAE. He described a toolkit that goes beyond old-school hacking — reconnaissance, vulnerability hunting, phishing, malicious tools aimed at tricking humans faster and more convincingly. ### Why does AI matter so much here? AI changes the economics of cyberattacks. A scammer used to need decent English, some patience, and a lot of manual work. Now software can draft convincing messages, mimic trusted writing styles, clone voices, and generate fake images or video at scale. That means more attacks, cheaper attacks, actually a social-engineering shortcut. ### Are these attacks hitting infrastructure or ordinary people? Both. Al Kuwaiti said strategic sectors are being targeted, but the public guidance is full of consumer-level warning signs — urgent requests for verification codes, suspicious links, unexpected money-transfer asks, improbable prizes, unfamiliar login alerts, and unsolicited messages. Systems matter, but so do the citizens and employees who can be manipulated into opening the door. ### Why are the numbers moving around? Because officials appear to be describing a range, not a single audited count. In late March, Al Kuwaiti said 500,000 to 700,000 daily attempts. In April, he said around 800,000. He also said the baseline before the recent escalation was about 200,000 a day. So the cleanest read is that the UAE counted. ### What is the UAE doing about it? The official answer is a layered defense model — zero-trust architecture, a National Cyber Security Operations Centre, threat-intelligence systems, cyber crisis simulations, and real-time alert sharing with government bodies and key sectors. That sounds technical, but the logic is simple: assume no user or device is automatically trusted, watch everything, share warnings fast, and rehearse failure before it happens. ### What’s the real takeaway? This is what modern state-linked cyber pressure looks like. Not one knockout punch — more like a swarm. The UAE is saying the danger now lives in volume, automation, and believable fakes. That matters beyond the Gulf, because once this playbook works anywhere, it travels.