Sandworm Linked to 2025 Poland Power Grid Attack via DynoWiper, Says ESET
ESET researchers attribute the late-2025 Poland power grid attack to the Russia-aligned Sandworm APT with medium confidence, identifying the data-wiping malware DynoWiper (Win32/KillFiles.NMO). There are no reports of disruption; the incident aligns with Sandworm’s ongoing wiper activity in Ukraine and falls on the 10th anniversary of the 2015 Ukrainian grid attack.