Source: Hackread | Author: Deeba Ahmed
Poland has narrowly avoided a massive energy crisis following what officials are calling the largest cyberattack on the country in years. Between 29 and 30 December 2025, hackers attempted to break into the nation’s energy infrastructure, specifically targeting two combined heat and power (CHP) plants and systems that manage wind and solar energy.
Cybersecurity firm ESET has linked the attack to Sandworm (APT44), a notorious Russian hacking group believed to be part of the GRU (Russia’s military intelligence). The hackers deployed a new wiper malware called DynoWiper, designed to permanently erase data and disable systems.
Prime Minister Donald Tusk confirmed that Poland’s security measures held firm: “Everything indicates that these attacks were prepared by groups directly linked to the Russian services.” If successful, the attack could have left half a million people without power or heat in the middle of winter.
