Hackers Reached Five Polish Water Plants as Utility Attacks Spread

Hackers Reached Five Polish Water Plants as Utility Attacks Spread

Hackers reached five water treatment plants in Poland and may have been able to take control of industrial equipment inside them, according to TechCrunch, which cited Poland's latest intelligence assessment. TechCrunch reported that the worst-case risk included tampering with the safety of the water supply, a scenario that turns a local utility breach into a public safety problem.

Poland's Internal Security Agency said in a Friday report covering the last two years that it thwarted sabotage activity from Russian government spies and hackers against military facilities, critical infrastructure, and civilian targets, according to TechCrunch. The agency wrote that sabotage activity against Poland, inspired and organized by Russian intelligence services, was a real and immediate threat requiring “full mobilization,” TechCrunch reported.

The same TechCrunch report said Poland's intelligence agency did not specify whether Russian government hackers were behind the water treatment plant attacks. It did, however, place the incidents alongside recent attempts by Russian hackers to target Polish infrastructure, including a failed effort to disrupt the country's energy grid that TechCrunch said was later attributed to poor security controls at the affected facilities.

The warning lands far beyond Poland. TechCrunch noted that a hacker briefly accessed a water treatment plant in Oldsmar, Florida, in 2021 and tried to raise sodium hydroxide to dangerous levels. The outlet also cited a recent joint advisory from the U.S. Cybersecurity and Infrastructure Security Agency, the FBI, the NSA, and other federal agencies that said Iranian-backed hackers are actively targeting programmable logic controllers at U.S. water and energy utilities.

Those controllers matter because they run pumps, valves, and chemical treatment processes, according to TechCrunch's description of the U.S. advisory. The report said the same Iranian-linked group, CyberAv3ngers, previously broke into digital control panels at multiple U.S. water treatment plants in Pennsylvania in 2023, showing how attackers can move from internet-exposed equipment to systems that affect real infrastructure.

TechCrunch framed the Polish incidents as part of a broader strategy aimed at destabilizing Western countries through cyberattacks, espionage, and sabotage. That context is what makes the five water plants stand out: the target was not a bank, a cloud service, or a phone app, but infrastructure people depend on every day.

For utility operators, the uncomfortable lesson is that small facilities now sit inside geopolitical conflict. Water systems that once looked too local to matter can become leverage when their control panels are exposed, their passwords are weak, or their industrial computers are treated like ordinary office IT.

Photo by Alpha Perspective on Unsplash