Webinar+ | Recording - Decoding the first massive cyberattack on Europe’s solar energy infrastructure – The Poland case and lessons learned

A technical guide for PV asset operators

On December 29, Poland faced a major coordinated cyberattack targeting its renewable and solar energy infrastructure. Analysts and Polish officials have linked the operation to Russian-affiliated hacking groups, seeing it as part of a broader campaign against critical European infrastructure.

The 90-minute webinar will open with a technical deep dive into the Poland case, featuring analysis by pv magazine cybersecurity expert Marian Willuhn and a guest from a cybersecurity firm. Participants will examine the weaknesses and vulnerabilities that allowed the hackers to cause harm, and discuss why generation was not directly manipulated. The session will also explore what would have been required to escalate to blackout-level control, and whether these vulnerabilities represent isolated lapses or systemic weaknesses across European fleets.

The second segment will focus on legal and liability implications, with insights from an energy and cybersecurity law expert. This session will clarify obligations under frameworks such as the European NIS2 directive, addressing what constitutes negligence, who qualifies as an essential entity, and the potential fines, insurance implications, or investor claims arising from a cyber-induced blackout or systemic damage. Differences across EU member states will be highlighted to give participants a concrete understanding of regulatory requirements.

The webinar’s key segment, “What You Can Do — Now,” will guide asset owners in developing practical compliance strategies, drawing on expertise from grid operators and industry specialists. Uri Sadot, CEO of SolarDefend and Chairman of the Digitalization Workstream at SolarPower Europe, will present actionable insights on leveraging digital tools for monitoring, reporting, and ensuring regulatory compliance in solar asset management. He will also cover best practices for integrating advanced data analytics, cybersecurity measures, and predictive maintenance strategies to help asset owners reduce operational risks while meeting evolving regulatory requirements.

The event will conclude with a live discussion and Q&A, allowing attendees to engage directly with all speakers on technical, legal, operational, and strategic questions, ensuring actionable takeaways for future PV plant operations.

Attendees will gain insights into:
- Technical deep dive into the Poland attack and its systemic implications
- Legal liability, NIS2 compliance, and what negligence really means for your organization
- Practical strategies you can implement now — with tools, frameworks, and expert guidance
- Live discussion and Q&A