Originally published by ESET Research
The attack involved data-wiping malware that ESET researchers have analyzed and named DynoWiper. Sandworm, a notorious state-sponsored threat group, has been attributed to this cyberattack on Poland's critical infrastructure.
Key details:
- Sandworm APT group behind the attack
- Poland's power grid targeted
- DynoWiper malware deployed
- Attack occurred in late 2025
- Part of ongoing cyber warfare operations
This incident highlights the persistent threat to critical infrastructure and the importance of robust cybersecurity measures for power grids and essential services.