🔴 Critical  |  Source: The Register — Security


The EU and UK have formally attributed a cyberattack on Poland’s power grid to Russian state-sponsored actors, specifically the GRU-linked group Sandworm. The attack, which targeted critical energy infrastructure, had the potential to cut power to approximately half a million people during winter. Sweeping sanctions have been announced against individuals and entities linked to the operation.

Security Architect’s Take: Organisations operating or supporting critical national infrastructure should treat this as a prompt to review their OT/IT network segmentation, ensure industrial control systems are air-gapped or strictly access-controlled, and validate that incident response playbooks explicitly cover state-sponsored threat scenarios including destructive malware targeting energy systems.

Original advisory: EU and UK officially blame Russian spies for cyberattack on Poland’s power grid