Wiper Malware Targeting Poland's Power Grid Tied to Moscow

Signs Point to Long-Active 'Sandworm' Military Intelligence Hackers at Work Mathew J. Schwartz (euroinfosec) • January 26, 2026

Russian military intelligence attempted to disrupt Poland's power grid just after the onset of winter using wiper malware, say security researchers.

See Also: Experts Offer Insights from Theoretical to the Realities of AI-enabled Cybercrime

Based on the destructive wiper malware employed, alongside other tactics, techniques and procedures, "we attribute the attack to the Russia-aligned Sandworm APT with medium confidence due to a strong overlap with numerous previous Sandworm wiper activity we analyzed," said researchers at cybersecurity firm Eset on Friday.

"We're not aware of any successful disruption occurring as a result of this attack," they said. They christened the Windows-targeting, data-wiping malware ...