Techcrunch
A report indicates that Russian government hackers successfully infiltrated parts of Poland's energy grid infrastructure, exploiting significant security vulnerabilities such as default credentials and a lack of multi-factor authentication. The attackers attempted to deploy wiper malware, though the full extent of their objective remains unclear.
AI 生成摘要
根據一份報告,俄羅斯政府駭客成功入侵波蘭部分電網基礎設施,利用了諸如預設憑證和缺乏多因素認證等嚴重的安全漏洞。駭客試圖部署清除惡意軟體,但其確切目標仍不明確。
Latest
AI
Amazon
Apps
Biotech & Health
Climate
Cloud Computing
Commerce
Crypto
Enterprise
EVs
Fintech
Fundraising
Gadgets
Gaming
Government & Policy
Hardware
Layoffs
Media & Entertainment
Meta
Microsoft
Privacy
Robotics
Security
Social
Space
Startups
TikTok
Transportation
Venture
Staff
Events
Startup Battlefield
StrictlyVC
Newsletters
Podcasts
Videos
Partner Content
TechCrunch Brand Studio
Crunchboard
Contact Us
Posted:
The Polish government said Russian government hackers broke into parts of the country’s energy grid infrastructure, taking advantage of its poor security.
On Friday, Poland’s Computer Emergency Response Team (CERT), which is part of the Ministry of Digital Affairs, released a technical report about an incident at the end of last year, where suspected Russian government hackers hacked wind and solar farms and a heat-and-power plant. According to the report, the hackers didn’t face a lot of resistance. The targeted systems used default usernames and passwords and did not have multi-factor authentication enabled, both incredibly basic mistakes.
The hackers tried to infect the systems they broke into with wiper malware designed to erase and effectively destroy the systems, perhaps trying to turn off the power, although it’s unclear if that was their goal. Either way, the attacks were stopped at the heat-and-power plant, but not at the wind and solar farms, whose systems to monitor and control grid systems were made inoperable by the malware.
“All of the attacks were purely destructive in nature — by analogy to the physical world, they can be compared to deliberate acts of arson,” read the report.
The hackers failed to disrupt power at any of their targeted facilities. And even if they had succeeded, the report said that the hack “would not have affected the stability of the Polish power system during the period in question.”
Cybersecurity firms ESET and Dragos previously released reports about the attacks, which occurred on December 29 of last year, accusing the notorious Russian government hacking group Sandworm of being behind the intrusions. Sandworm has a documented history of targeting energy infrastructure in Ukraine and turning off the lights in the country in 2015, 2016, and 2022.
Poland’s CERT, however, accused a different Russian government hacking group, known as Berserk Bear or Dragonfly, which is not known for destructive attacks, but rather more traditional cyberespionage.
Topics
Tickets are live at the lowest rates of the year. Save up to $680 on your pass — and if you’re among the first 500 registrants, score a +1 pass at 50% off.Meet investors. Discover your next portfolio company. Hear from 250+ tech leaders, dive into 200+ sessions, and explore 300+ startups building what’s next. Don’t miss these one-time savings.
Subscribe for the industry’s biggest tech news
Every weekday and Sunday, you can get the best of TechCrunch’s coverage.
TechCrunch Mobility is your destination for transportation news and insight.
Startups are the core of TechCrunch, so get our best coverage delivered weekly.
Provides movers and shakers with the info they need to start their day.
By submitting your email, you agree to our Terms and Privacy Notice.
© 2025 TechCrunch Media LLC.