Yazılar

Poland warns of surge in Russian cyberattacks on critical infrastructure

/in /tarafından

Poland is facing an unprecedented wave of cyberattacks, much of it traced to Russian military intelligence, according to the country’s digital affairs minister, Krzysztof Gawkowski. He told Reuters that Russia has tripled its cyber resources directed at Poland this year, targeting sectors vital to national security.

Of the 170,000 cyber incidents recorded in the first nine months of 2025, a “significant portion” was attributed to Russian state-linked actors, while the rest involved financially motivated cybercrime. Poland now faces 2,000–4,000 attacks daily, of which 700–1,000 pose real threats to key infrastructure, Gawkowski said.

The minister noted that Russian groups are expanding their focus beyond water and sewage systems to include energy networks, and warned that the activity is becoming more coordinated and sophisticated. “Russian activity is the most severe because it targets infrastructure essential to maintaining normal life,” he said.

A major escalation occurred on September 10, when a cyberattack coincided with a Russian drone strike, marking Poland’s largest coordinated digital assault since the start of the Ukraine war in 2022. False claims spread online that Ukraine had launched the drones, amplified by bot networks that had been dormant for years before suddenly reactivating.

Warsaw officials say Poland has become Russia’s top cyber target within NATO, due to its support for Kyiv and its strategic role in supplying Ukraine. The Russian embassy in Warsaw did not respond to requests for comment but has consistently denied involvement in cyber operations.

Google says over 100 firms likely hit in Oracle-linked hacking campaign

/in /tarafından

Google warned that more than 100 companies may have been compromised in a massive cyberattack targeting Oracle’s E-Business Suite, a core system used by corporations to manage supply chains, customer data, and manufacturing operations.

In a statement released Thursday, Google said “mass amounts of customer data” were stolen in the attack, which may have begun three months ago. The company attributed the breach to the CL0P ransomware group, known for large-scale cyber intrusions exploiting third-party software vulnerabilities.

“This level of investment suggests the threat actor dedicated significant resources to pre-attack research,” Google’s cybersecurity division said. Analyst Austin Larsen added that while dozens of victims have been confirmed, “based on the scale of previous CL0P campaigns, it is likely there are over a hundred.”

The breach appears to have targeted Oracle’s E-Business Suite, used by corporations worldwide to manage sensitive operations including logistics, customer relations, and payments. Oracle has not publicly commented beyond acknowledging ongoing extortion attempts against some clients.

CL0P, which has previously claimed responsibility for major data thefts, told Reuters earlier this week that Oracle had “bugged up their core product.” The group is reportedly threatening to publish stolen data unless ransom demands are met.

Cyber experts say the scale of the attack could rival the MOVEit hack of 2023, underlining the growing risk of supply chain breaches that exploit trusted enterprise software systems.

Vertu Motors warns of $7.4 million profit hit after JLR cyberattack

/in /tarafından

Vertu Motors said it expects up to a 5.5 million-pound ($7.4 million) impact on annual profit following the Jaguar Land Rover (JLR) cyberattack that disrupted operations for nearly six weeks. The British car dealer’s shares fell 3.5% in early trading after the announcement.

JLR, owned by India’s Tata Motors, began restarting its systems this week after the incident crippled parts of its network. Vertu, which operates 10 JLR dealerships across the UK, said about 2 million pounds of the loss occurred in September, and the total effect will depend on how quickly JLR fully restores operations.

“We’re working with our insurers to assess a possible claim under our policy, which covers third-party system outages,” said CEO Robert Forrester.

Vertu noted that, excluding the cyberattack’s impact, it still expects annual pretax profit to align with market forecasts of around 27.2 million pounds. For the six months ending August 31, adjusted profit before tax stood at 20 million pounds, a nearly 10% decline from the previous year.

The incident highlights the growing financial risks of cybersecurity failures in the automotive industry, where interconnected supply chains leave dealerships and manufacturers increasingly exposed.