Polish peculiar services have announced a state of advanced alert due to the expanding threat from Russian cybercrime. Companies from the logistics, technological and critical infrastructure sectors were targeted. Poland is in the strict group of countries targeted by Russian hackers – confirms Check Point Software.
Alarming information about attacks on companies active in maritime, rail and air transport, air traffic management, logistics centres, as well as providing IT services, was provided by the Military Counterintelligence Service (SKW) and the interior safety Agency (ABW).The goal of Russian hackers associated with GRU intelligence is to get delicate data on, among others, routes and transportation dates of military equipment and information about its broadcasters and recipients. These data can be utilized operationally against Ukraine and its allies.
All specified events have 1 goal – little or more state paralysis, which in the current geopolitical situation translates into strategical security.The goal of the Russian groups is to disrupt the smooth functioning of the state, public institutions and increase unrest in Poland as an active partner supporting Ukraine during the war. – comments earlier attempts at attacks Wojciech Głażewski, country manager of Check Point Software in Poland.
The safety company Check Point Software Technologies reported at the beginning of the year that intense attacks on Polish critical infrastructure were carried out by criminals associated with the Russian military unit GRU – 26165, known as the APT28 group or "Fancy Bear", KillNet groups, NoName057, Cyber Army of Russia, APT44 or Storm.... Since 2022 they have been moving a coordinated cyber spy run against countries supporting Ukraine.
Most active pro-Russian groups in 2025:
APT CopyCop – APT group linked to Russia, focusing on media infiltration and spreading false content.
Storm-1679 – specializes in spreading false narratives, frequently based on actual events, but intentionally distorted.
Storm-1516 –pro-Russian group identified by safety analysts as the creator of over 100 websites impersonating information portals. They published many disinformation articles on German politicians and interior politics of Germany.
APT44 (also known as Sandworm) – a group with a advanced level of progress, conducting activities in both cyber attacks and intellectual destabilisation.
KillNet, NoName057(16) and Cyber Army of Russia – known for attacks oncritical infrastructure in the countries against Russia. These groups conducted mainly DDoS (Distributed Denial of Service) attacks and another forms of manipulation, disrupting the activities of government and private sector institutions in Ukraine and countries supporting Ukraine (in Poland).
‘Russians use, among others, civilian devices specified as private IP cameras, without the cognition of the owners” – emphasize the service, adding that attempts to interfere in software supply chains have been detected and blocked. The Russians are besides attacking another countries... The United States, the United Kingdom, Germany, the Czech Republic, Australia, Canada, Denmark, Estonia, France and the Netherlands besides published a message on Russian hacker activities.
Russia is the biggest cyber threat to Poland
Embroker experts emphasize that Russia is simply a country where many cybercrime activities come from, and this is due to a number of reasons – an extended network of organized criminal activities, engagement of the Russian government in specified activities (GRU) and deficiency of law enforcement.
Russia's government sees cybernetic and information capabilities as key elements of its military and intelligence operations," emphasizes Justin Sherman in an analysis of the prestigious Atlantic Coucil magazine (https://www.atlanticcouncil.org/content-series/russia-tomorrow/unpacking-russias-cyber-nesting-doll/).
Meanwhile Poland is located in aucisedauCommonwe pasEurope WMeanaudem number attackóin strategical sectors: public utility, transport, rzauI don't know.These sectors are attacked more than 1850 times per monthauca – this is por levelóinclusive with sauSeven Czech Republics and Waugames, much youauCommonau on Sedovation (1,400) or Germany (1,300) is based on the analysis of Check Point.
Europe and the planet face an expanding cyber threat. The utmost increase in connectivity – 5.5 billion net users, 15 billion IoT devices connected to the network, widespread mobile network access and the improvement of artificial intelligence – bring with them both fresh opportunities and threats – are highlighted by experts Check Point Software.
Check Point experts besides pay attention to fresh hacking techniques and targetsóThis year – routers hacked, officeaulpaudóre staedauau key access pointsaued for cyberconferenceaupców. In the run-uped2024) over 200,000aueds stayedo overauthose through advanced botnets like Raptor Train. The problem isau róGeneralausecurity gaps. Aau96% attackówill useedof susceptibleauyou revealed before 2024.
But Russian hackers besides usage another methods. In April this year, Check Point experts pointed to attacks by Russian cyber criminals who impersonated the Ministry of abroad Affairs of 1 of the European countries, sending e-mails with invitations to alleged exclusive diplomatic meetings with wine. Clicking on the link – ideally suited to the sender and website – did not lead to tasting, however, but to the installation of malicious spyware.https://research.checkpoint.com/2025/apt29-phishing-campaign/
The dramatic increase in the number of attacks is simply a challenge not only for companies but besides for the full national safety sector. Cybercriminals are not only becoming more specialized and audacious, but besides better funded and organised. – With an expanding number of cyber attacks, the request for a strong defence strategy based on global cooperation, information exchange and the introduction of innovative safety technologies is increasing. Time will show whether Poland and neighbouring countries can successfully tackle cyber threats and strengthen their defence systems in the face of further attacks – emphasizes Wojciech Głażewski, manager of Check Point Software Technologies in Poland.
