ANALYSIS: Iran Declares War on Tech Giants — and No One Is Prepared

The AWS Attack That Changed Everything

To understand why this threat is no bluff, we need to rewind a few weeks. In early March, Iran struck AWS data centers in the Middle East. Not a simulation. Not a drill. Real strikes on real facilities, causing a cascade of outages in the United Arab Emirates’ digital applications and services. Millions of people were cut off from their everyday tools—online banking, email, government services—because missiles struck buildings filled with servers.

On that day, the line between conventional warfare and digital warfare ceased to exist. What had been theoretical in cybersecurity textbooks became physical. Tangible. Measurable in hours of downtime and billions in losses.

The Methodical Escalation

The numbers are staggering. Since the start of the conflict triggered by the U.S.-Israeli strikes on February 28, more than 3,000 drones and missiles have been fired at the United Arab Emirates, Saudi Arabia, Bahrain, and Kuwait, according to the Center for Strategic and International Studies. Iran is not striking at random. Iran strikes methodically—first energy infrastructure, then data centers, and now specifically targeted technology companies. Each stage of escalation is calculated to maximize economic pain while remaining below the threshold for a nuclear response.

More than 40 energy assets in the Middle East have been “severely damaged,” according to the head of the International Energy Agency. Iran targets what hurts—and servers hurt just as much as oil pipelines.

When Cheap Energy Drew in the Giants

For years, the Persian Gulf was touted as the new technological Eldorado. Virtually free energy to power voracious data centers. Vast tracts of land to build gigantic campuses. Stable regimes—or at least ones presented as such—with sovereign wealth funds ready to co-invest billions. The bet seemed unstoppable: to set up artificial intelligence infrastructure where electricity costs a fraction of the price in California.

Hundreds of billions of dollars poured in. Deals multiplied. As recently as a short while ago, CNBC was reporting on the “Gulf’s trillion-dollar bet on AI.” Nvidia was selling its chips. Microsoft was rolling out Azure. Google was laying its cables. No one had factored the geopolitical risk into their spreadsheets—or rather, everyone had chosen to ignore it.

The Actuaries’ Rough Awakening

Today, those same investments have become strategic vulnerabilities. A data center in the Emirati desert isn’t protected by the Pentagon. A tech campus in Dubai doesn’t have a Patriot missile defense system on its roof. And when the Revolutionary Guards post your name on Telegram, labeling you a legitimate target, your insurance policy probably doesn’t cover that scenario.

And yet, companies continue to operate. Employees continue to go to work. Servers continue to run. Because shutting down means losing billions. And staying means risking lives. The dilemma is as cruel as it is unprecedented.

When the Law of War Meets Silicon Valley

The term “legitimate target” is not insignificant. In international humanitarian law, a “legitimate target” is a military objective whose destruction provides a concrete military advantage. By applying this legal terminology to civilian companies, the Revolutionary Guards are unilaterally redefining the rules of war. They do not say, “We are going to commit an act of terrorism.” They say, “Your companies are instruments of war, and therefore targets of war.”

The logic is perverse but consistent: if Palantir provides analytical tools to U.S. intelligence, if Boeing manufactures the planes that bomb Iran, if Nvidia produces the chips that power guidance systems, then the entire U.S. technology chain is participating in the war effort. This is the dual-target theory taken to its logical extreme—and that is exactly what makes it so dangerous.

The precedent that terrifies strategists

Henderson of Healix goes further: “Future crises could target data centers and cloud platforms just as much as traditional strategic sites.” ” Reread that sentence. It means that in the wars of tomorrow, destroying an AWS data center will be the equivalent of sinking an aircraft carrier. That taking down Azure will be as strategic as bombing an airbase. That crippling Google Cloud will be considered a major military victory.

This is no longer just theory. Iran already did it in March. It promises to do it again, on a larger scale, with a list of targets published in advance. The world has changed, and most boards of directors haven’t figured that out yet.

The Timeline of the Unpredictable

On Tuesday, Donald Trump said he expected U.S. military forces to leave Iran “in two or three weeks.” The White House announced that he would address the nation on Wednesday evening—precisely the day the Revolutionary Guards promised to launch their attacks against tech companies. This timing is no coincidence.

On one side, a president talking about withdrawal. On the other, an enemy promising escalation. The gap between these two realities is the space in which lives—American, Iranian, Emirati—will hang in the balance in the coming hours and days.

The human toll that no one wants to face

More than 3,400 Iranian civilians and military personnel have been killed since the start of the conflict, according to the Human Rights Activist News Agency. Thirteen U.S. service members killed, according to U.S. Central Command. These figures, repeated in news reports like sports statistics, mask a visceral reality: every number represents a body, a shattered family, and yet another reason for the Revolutionary Guards to strike where it hurts—in America’s pocketbook.

And yet, Trump’s rhetoric oscillates between bravado and negotiation. He wants to “reach a deal.” He plans to “gradually reduce” the military commitment. He invokes Pearl Harbor in front of the Japanese prime minister to justify the initial attack. The cognitive dissonance is so intense that it becomes almost physical.

The World’s Most Dangerous Geopolitical Chokepoint

While threats against tech giants capture the spotlight, Iran is quietly tightening its grip on the Strait of Hormuz—the 33-kilometer-wide chokepoint through which about 20% of the world’s oil passes. Tehran has transformed a small island into a veritable “oil toll booth,” cementing its control over global energy flows. Brent crude is on track for its largest monthly gain on record.

Iran’s strategy is crystal clear: strike on all fronts simultaneously. Energy. Technology. Finance. Each targeted sector serves as an additional lever of pressure on Washington. Every data center disrupted, every tanker slowed down, every percentage point added to the price per barrel brings America closer to the economic pain threshold that leads to the negotiating table.

The Convergence of Vulnerabilities

What no one dares say out loud: the massive technological investments in the Gulf and the dependence on oil from the Strait of Hormuz are not separate vulnerabilities. They are linked. Data centers need energy. Energy from the Gulf depends on regional stability. Regional stability depends on the relationship with Iran. And that relationship has been in free fall since February 28.

Trump has temporarily suspended the Jones Act shipping rules to stabilize the oil market. He has granted a 30-day waiver for the sale of Iranian oil at sea. These are mere band-aid measures for a strategic hemorrhage. The CEO of Saudi Aramco withdrew from a major international energy conference because of the conflict. When the oil titans flee the spotlight, it means the situation is far worse than the markets are willing to admit.

The Company Iran Wants to See Burn

Palantir’s inclusion on the list of 18 deserves special attention. This isn’t Apple, whose products are everywhere. It’s not Google, whose services are ubiquitous. Palantir is an intelligence and data analytics company whose contracts with the Pentagon, the CIA, and allied intelligence agencies are public knowledge. By naming it, the Revolutionary Guards are sending a crystal-clear message: we know exactly who is helping to track us down, and we’re coming for them.

Similarly, the inclusion of JPMorgan—the only financial institution on the list—suggests that Tehran fully understands the role of the U.S. financial system in the sanctions architecture that has been strangling the Iranian economy for decades. This is not a random list. It is a map of American power, sector by sector.

G42: The Message to Arab Allies

The inclusion of G42, a UAE-based artificial intelligence company, is the most chilling signal for the Gulf monarchies. The message is blunt: collaborating with Washington makes you a target. Not collateral damage. A deliberate target. The Emirates, which have invested heavily to position themselves as a global technology hub, find themselves caught in a vise between their alliance with the U.S. and the barrage of Iranian missiles that has been raining down on their territory for the past five weeks.

More than 3,000 drones and missiles have struck four Gulf countries. This is no longer a retaliatory operation. It is a regional military campaign in all but name.

Wall Street’s Willful Blindness

The most astonishing paradox of this crisis is the lack of a stock market panic commensurate with the threat. Nvidia, Apple, Microsoft—these stocks are collectively worth trillions of dollars. A successful attack on their Middle Eastern facilities would cause service disruptions, data loss, and astronomical reconstruction costs. And yet, the markets continue to treat these threats as background noise.

This is the normalcy bias in its purest form. Because data centers have “never been targets of war”—except that they were, less than a month ago, when AWS was hit. Because “Iran can’t really reach these facilities”—except that it did. Because “the United States will protect its companies”—except that thirteen American soldiers have already died and the president is talking about withdrawal.

The black swan with a Telegram channel

In classical risk theory, a black swan is an unpredictable event with massive consequences. What’s happening here is its exact opposite: a publicly announced event—complete with date, time, and a list of targets—that the global financial system collectively chooses to ignore. This isn’t a black swan. It’s a blood-red swan screaming on Telegram while traders look the other way.

The fertilizer shortage caused by the war is already threatening Republican agricultural states ahead of the midterm elections. Brent crude is skyrocketing. Gold prices are soaring before correcting. Every additional day of conflict adds another layer of fragility to a global economy already under strain.

Missiles on servers, sanctions on banks

What is unfolding before our eyes is not a conventional war with a cyber component. Nor is it a cyberwar with physical collateral damage. It is something fundamentally new: a war in which civilian digital infrastructure is a primary military target, on par with air bases or ammunition depots.

Iran has attacked power plants in Kuwait. It has struck aluminum facilities in Bahrain. It has targeted data centers in the United Arab Emirates. It has threatened buyers of U.S. Treasury bonds. Every front is open simultaneously; every lever is being pulled at the same time. The doctrine is clear: maximize pain on every possible front to force negotiations.

The Inadequacy of Existing Frameworks

Our institutions—military, financial, regulatory—were built for a world where wars and markets occupy separate spheres. Where the destruction of a server is an IT incident and the destruction of a bridge is an act of war. That distinction died in March 2026. And no one has yet mapped out this new territory.

And yet, this is the territory in which we now live. Where a post on Telegram can send the Nasdaq reeling. Where a data center in the desert is as strategic as an aircraft carrier in the Gulf. Where the line between civilian infrastructure and a military target depends on who’s holding the missile launcher.

Trump’s Mixed Signals

Pakistan has offered to mediate and says it is ready to host U.S.-Iran talks “in the coming days.” Trump told CNBC he is “very determined to reach a deal.” He then stated that the United States could end the war but would continue to ensure that Iran “can never rebuild itself.” Netanyahu declared Iran “decimated” but asserted that a revolution requires a “ground component.”

Each of these statements contradicts the one before it. You don’t negotiate with a country you want to prevent from rebuilding itself. You don’t withdraw from a theater of operations in two weeks while simultaneously planning for a ground component. You don’t “reach an agreement” with a regime whose intelligence minister you’ve killed. The strategic cacophony is such that even Washington’s closest allies no longer know which spokesperson to believe.

The Clock Is Ticking

On Wednesday evening, two events will coincide. Trump will address the nation on the war in Iran. And the deadline set by the Revolutionary Guards for the start of attacks against the 18 tech companies will have expired hours earlier. This coincidence is either a scheduling fluke or a calculated move by Tehran to maximize the media impact of the threat. In either case, the next 48 hours will determine what happens next.

If the attacks occur, it will be an unprecedented escalation against the U.S. private sector. If they do not occur, it will be a bluff that will undermine the credibility of future Iranian threats. And if they occur only partially—a drone strike on a regional office, a missile strike on a logistics warehouse—that is the most dangerous scenario of all, because it will force Washington to respond without being able to classify the attack as “major.”

The People Behind the Company Names

Behind the ticker symbol NVDA on a Bloomberg screen are engineers who head to an office in Dubai or Riyadh every morning. Behind AAPL are technicians who maintain servers in the desert heat. Behind INTC is the only spokesperson who had the courage to issue a statement—however inadequate it may be—on the safety of its employees.

It is these people—not the stocks, not the balance sheets, not the market capitalizations—who are under threat of death from a state military body. And the silence of 17 out of 18 companies in the face of this direct threat to their employees is, in itself, a scandal that warrants legal action.

Responsibility That Cannot Be Outsourced

When you set up a data center in a potential conflict zone to save on electricity, you’re taking a risk. When that risk materializes and your employees are specifically threatened by a military force, you have a moral and legal obligation to respond. “We are actively monitoring the situation” is not a response. It’s an admission of unpreparedness.

And yet, not a single security director from the 18 targeted companies has resigned. Not a single board of directors has convened a public emergency meeting. Not a single CEO has spoken up to tell their employees: your lives are worth more than our profit margins. The silence is unanimous—and it is deafening.

The End of the Myth of Distributed Infrastructure

For twenty years, the tech industry has sold resilience through distribution. Your data is “everywhere and nowhere.” If one server goes down, another takes over. The cloud is invulnerable because it has no location. March 2026 shattered that myth. The cloud does have a location. It has an address. It has walls, a roof, and employees who can be killed by a missile.

The question that will haunt the coming decades is brutal: where should we build AI infrastructure? Not in the Gulf—too risky. Not in China—too political. Not in Europe—too expensive and too heavily regulated. In the United States—not enough cheap energy. The map of safe locations for a data center shrinks with every missile.

Henderson was right—and it’s terrifying

“This isn’t a flash in the pan, but a sustained pattern,” said James Henderson. Translation: get used to it. Threats against tech infrastructure aren’t just an episode in the Iran-U.S. war. They are the new normal for all future conflicts. Every future war will include data centers on its list of targets. Every geopolitical tension will lead to an assessment of server vulnerability.

Insurers figured this out before the markets did. Premiums for tech facilities in the Middle East are going to skyrocket—if insurers are even willing to cover these risks anymore. And companies that have bet billions on the region will have to choose: stay and take the risk, or leave and lose out.

We’ve built our future on sand—literally

By laying the foundations of global artificial intelligence in one of the most unstable regions on the planet, the tech giants have committed the most costly strategic error in the history of digital capitalism. Not out of ignorance—the risks were documented, analyzed, and discussed in confidential reports that everyone read but no one heeded. But out of greed. Because cheap energy from the Gulf offered profit margins impossible to replicate elsewhere.

Today, Iran’s Revolutionary Guards are publishing a list of targets on Telegram, and Silicon Valley is discovering that its servers in the desert are as vulnerable as a sandcastle facing the tide. The metaphor is almost too perfect to bear.

What Comes Next

In the coming hours, either the attacks will happen and the world will plunge into an unprecedented escalation, or they won’t happen and a false sense of normalcy will return—until the next threat, which will be met with less skepticism. In either case, something has irreversibly changed.

Data centers are targets of war. Tech companies are unwitting belligerents. And the employees heading to work tomorrow morning in the Persian Gulf are the ununiformed soldiers of a conflict they never chose.

Welcome to the war of the 21st century. It is fought with missiles and servers. And no one—absolutely no one—was prepared for it.

Signed, Jacques PJ Provost