Recent reports reveal a concerning breach in Poland’s energy sector, where Russian government hackers infiltrated wind and solar farms as well as a heat-and-power plant, exploiting weak security measures. The intrusion, detailed in a report by Poland’s Computer Emergency Response Team (CERT), exposed the use of default credentials and the absence of multi-factor authentication, basic security oversights that facilitated the attack.
The hackers attempted to deploy wiper malware to disrupt operations, but their efforts were thwarted at the heat-and-power plant, preventing any significant impact on the power supply. Although the wind and solar farms suffered system disruptions, the Polish power grid remained stable amidst the attack.
This incident, reminiscent of past cyber assaults on energy infrastructure, underscores the critical importance of robust cybersecurity measures in safeguarding vital systems against malicious actors. The involvement of notorious Russian government hacking groups like Sandworm and Berserk Bear raises concerns about the persistent threat posed to critical infrastructure worldwide.
Source: TechCrunch