This study investigates the 2024 Lebanon pager and two-way radio mass explosions, identifying for the first time “battery-powered device weaponization” as a novel cyber-physical attack paradigm, exposing critical physical-layer attack surfaces—including battery management systems (BMS), firmware update chains, and RF-based wake-up mechanisms. Method: We integrate reverse engineering, hardware security analysis, battery management protocol auditing, and multi-source intelligence correlation to construct a defense framework that synergizes physical-layer verification with cross-domain vulnerability analysis. Contribution/Results: The work elucidates the technical pathway by which remotely exploitable, battery-powered wireless devices can be weaponized; it has directly informed revisions to wireless device security certification standards for critical infrastructure across multiple countries. By bridging cyber and physical domains, this research provides both theoretical foundations and actionable defensive paradigms for securing the cyber-physical interface.

Battery-powered technologies like pagers and walkie-talkies have long been integral to civilian and military operations. However, the potential for such everyday devices to be weaponized has largely been underestimated in the realm of cybersecurity. In September 2024, Lebanon experienced a series of unprecedented, coordinated explosions triggered through compromised pagers and walkie-talkies, creating a new category of attack in the domain of cyber-physical warfare. This attack not only disrupted critical communication networks but also resulted in injuries, loss of life, and exposed significant national security vulnerabilities, prompting governments and organizations worldwide to reevaluate their cybersecurity frameworks. This article provides an in-depth investigation into the infamous Pager and Walkie-Talkie attacks, analyzing both technical and non-technical dimensions. Furthermore, the study extends its scope to explore vulnerabilities in other battery-powered infrastructures, such as battery management systems, highlighting their potential exploitation. Existing prevention and detection techniques are reviewed, with an emphasis on their limitations and the challenges they face in addressing emerging threats. Finally, the article discusses emerging methodologies, particularly focusing on the role of physical inspection, as a critical component of future security measures. This research aims to provide actionable insights to bolster the resilience of cyber-physical systems in an increasingly interconnected world.