**Russian Military Intelligence Hackers Likely Behind December Cyberattacks on Polish Energy Targets**

The recent cyberattacks on Poland's power system in late December have sparked concerns about the growing threat of destructive cyber operations. Researchers with Slovakia-based ESET have analyzed the malware used during the attack and believe that it was the work of a notorious Russian military intelligence hacking unit, tracked widely as Sandworm.

Sandworm has been linked to several high-profile and destructive cyber attacks dating back over a decade. The group's methods and code overlaps with other destructive operations attributed to them in the past, according to ESET researchers. The malware used during the December attack was dubbed DynoWiper, which aimed to destroy files on targeted computer systems and render them inoperable.

Fortunately, it appears that the attack did not succeed in causing any significant disruptions to Poland's power system. Polish Prime Minister Donald Tusk claimed that the attacks were unsuccessful, a statement echoed by ESET researchers. However, the fact that such a sophisticated hacking unit was involved raises concerns about the potential for future attacks.

Poland's Energy Minister, Milosz Motyka, described the December attack as the strongest on the country's energy infrastructure in years. The timing of the attack is also notable, occurring on the tenth anniversary of the Sandworm-linked destructive malware attack on the Ukrainian power grid. This attack resulted in the first-ever malware-facilitated blackout.

The attribution of the December cyberattacks to Russian military intelligence hackers has significant implications for international relations and cybersecurity efforts. The U.S. and British governments have previously attributed similar attacks to Sandworm, highlighting the need for coordinated efforts to combat these threats.

ESET researchers emphasized that while they are not aware of any successful disruption occurring as a result of this attack, the potential consequences of such operations cannot be underestimated. As we move forward in an increasingly digital world, it is essential to stay vigilant and prepared for the growing threat of destructive cyber attacks.

**Attribution and Implications**

The attribution of the December cyberattacks to Sandworm has significant implications for international relations and cybersecurity efforts. The U.S. and British governments have previously attributed similar attacks to Sandworm, highlighting the need for coordinated efforts to combat these threats.

The fact that such a sophisticated hacking unit was involved raises concerns about the potential for future attacks. As we move forward in an increasingly digital world, it is essential to stay vigilant and prepared for the growing threat of destructive cyber attacks.

**Subscribe to Our Chief Editor's Week in Review**

Stay up-to-date with the latest news and analysis from our chief editor's weekly newsletter. Every Saturday, our chief editor shares their expert insights on the biggest stories of the week, along with exclusive picks and recommendations.