Russian ELECTRUM Linked to December 2025 Cyber Attack on Polish Power Grid
29.01.2026
7539
Dragos attributes a December 2025 Polish grid attack to ELECTRUM, disrupting ~30 distributed energy resource sites without outages but damaging operational technology.
Russian ELECTRUM Linked to December 2025 Cyber Attack on Polish Power Grid
Hold up — Russian threat actors just hit Poland's power grid. Dragos confirmed ELECTRUM (aka Sandworm) was behind the December 2025 attack that disrupted ~30 distributed energy resource (DER) sites. No blackouts, but OT gear got wrecked. This is next-level infrastructure warfare.
The attack targeted DERs — solar, wind, battery storage — that feed into Poland's main grid. ELECTRUM's move shows they're shifting from big-grid takedowns to destabilizing the energy mix. No lights went out, but OT systems took serious damage. Think: controllers, sensors, comms gear fried.
Dragos tracked the intrusion to ELECTRUM's known TTPs: spear-phishing, credential theft, lateral movement via IT networks into OT zones. Once inside, they deployed custom malware to brick devices. This isn't ransomware — it's pure sabotage.
- • Attack Date: December 2025
- • Target: Polish power grid DER sites
- • Actor: ELECTRUM (Sandworm, linked to Russian GRU)
- • Sites Affected: ~30 distributed energy resources
- • Impact: OT damage, no grid outages
- • Method: Spear-phishing, lateral movement, custom OT malware
Why it matters: ELECTRUM has a rep for grid attacks (Ukraine 2015-2016, US grid probes). Hitting DERs is a new play — it tests resilience of decentralized energy. Poland's grid stayed up, but the attack exposed soft spots in modern infrastructure.
Bottom line: State-backed hackers are leveling up. OT security can't be an afterthought. If you're in critical infrastructure, assume you're already in their sights. Patch, segment, monitor — or get ready for a very bad day.
#malware#state-sponsored cyber attacks#Critical infrastructure#phishing#Energy Security
Got a topic? Write to ATLA WIRE on Telegram:t.me/atla_community
