Sabotage on the Grid: The 2025 Polish Energy Attacks
This podcast analyzes the destructive 2025 cyber campaign against Poland’s energy sector, detailing how threat actors leveraged wiper malware and firmware corruption to attempt irreversible damage to renewable energy and heating infrastructure
🎧 Listen to this Episode
Show Notes
This episode uncovers the details behind the coordinated cyber sabotage that struck Polish wind farms, a combined heat and power plant, and a manufacturing firm on December 29, 2025. We explore how attackers exploited vulnerable FortiGate VPNs and default credentials to deploy destructive "DynoWiper" malware and corrupt critical industrial firmware, aiming to permanently disable physical equipment. Finally, we examine the forensic evidence linking these attacks to the "Static Tundra" activity cluster and discuss the broader risks facing critical infrastructure today.
Sponsor:
Enjoying CISO Insights?
Subscribe to get new episodes delivered directly to your podcast app.