Amazon Threat Intel has linked the cyber activities of Iranian threat groups to missile strikes in Israel and the Red Sea, highlighting a trend where cyber operations support physical attacks. Two specific incidents illustrate this connection. The first involved the APT group Imperial Kitten, which accessed maritime tracking systems before Houthi rebels attempted a missile strike on a commercial vessel in February 2024. Although the missiles missed their target, the group's prior reconnaissance of the ship's location demonstrates how cyber espionage can directly facilitate military operations. In a separate incident, the Iranian cyber group MuddyWater gained access to live CCTV feeds from Jerusalem just days before a missile barrage targeted the city. This incident followed US strikes on Iran's nuclear sites, with Iranian operatives reportedly assessing the impact of their attacks through the compromised surveillance. Both cases underscore a broader shift in warfare tactics, where the lines between cyber and kinetic operations blur. Amazon’s CISO, CJ Moses, emphasized that this trend represents a significant evolution in how nation-states conduct warfare, making traditional defenses inadequate. Amazon recommends that organizations, especially those in critical infrastructure, rethink threat models to account for how cyber vulnerabilities can enable physical attacks. The term "cyber-enabled kinetic targeting" has been introduced to describe these operations, urging defenders to adapt their strategies to address the interconnected nature of digital and physical threats. The research serves as a wake-up call for organizations that may have previously underestimated their appeal to cyber adversaries.