Back

CISA Warns U.S. After Cyberattack on Poland's Energy Grid Linked to Russian Hackers

Severity: Critical (Score: 92.5)

Sources: Industrialcyber.Co, Notebookcheck, Cisa, Mbtmag, Scworld

Summary

A cyberattack targeting Poland's energy grid in December has been linked to a Russian government-affiliated hacking group. The attack affected 30 wind and photovoltaic farms and prompted the Cybersecurity and Infrastructure Security Agency (CISA) to issue a warning to U.S. critical infrastructure operators on February 10, 2026. This alert follows a report from Poland's Computer Emergency Response Team released on January 30, 2026.

Key Entities

  • Berserk Bear (apt_group)
  • Dragonfly (apt_group)
  • Ghost Blizzard (apt_group)
  • Static Tundra (apt_group)
  • Denial-of-Service (attack_type)
  • Malware (attack_type)
  • Cybersecurity and Infrastructure Security Agency (company)
  • Poland (country)
  • Russia (country)
  • Ukraine (country)
  • United Kingdom (country)
  • Energy (industry)
  • Government (industry)
  • Manufacturing (industry)
  • T1078 - Valid Accounts (mitre_attack)
  • T1190 - Exploit Public-Facing Application (mitre_attack)
  • T1485 - Data Destruction (mitre_attack)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed