The UK and European Union have formally attributed a December 2025 cyberattack on Poland's power grid to Russia's Federal Security Service (FSB), specifically its Centre 16 division, according to The Register. This attribution has prompted urgent calls for critical infrastructure organizations to implement enhanced security measures.
The attack, which occurred in December 2025, targeted Poland's power grid with the intent to disrupt communication between renewable energy hardware and power distribution operators. Although ultimately unsuccessful in causing widespread disruption, the attackers attempted to deploy the destructive DynoWiper malware, a tactic associated with Russian state-backed operations.
The UK's National Cyber Security Centre (NCSC) and its international partners have highlighted that organizations in sectors such as communications, defense, energy, financial services, government, and healthcare are most at risk. Key recommended mitigations include disabling SNMPv1 and SNMPv2 in favor of SNMPv3 with authPriv, and disabling Cisco Smart Install on all devices.
These measures aim to counter tactics like scanning for devices with vulnerable SNMP versions and exploiting Cisco devices. In parallel, the UK and EU have imposed fresh sanctions on Russian individuals and entities, including GRU officials and cybercriminals, for their roles in supporting Russian state aggression and cyber operations.\
Kelley Damore is Chief Content Officer at CyberRisk Alliance, where she leads content strategy across the company’s digital brands, research, communities and live events serving CISOs and security practitioners. At CyberRisk Alliance, she is focused on delivering 365-day engagement, trusted journalism and actionable insights to help security leaders navigate an increasingly complex threat landscape.
Kelley Damore is Chief Content Officer at CyberRisk Alliance, where she leads content strategy across the company’s digital brands, research, communities and live events serving CISOs and security practitioners. At CyberRisk Alliance, she is focused on delivering 365-day engagement, trusted journalism and actionable insights to help security leaders navigate an increasingly complex threat landscape.
Registering with SC Media is 100% free. Join tens of thousands of cybersecurity leaders today and gain access to the latest analysis shaping the global infosec agenda.