Security Experts:

Connect with us

Hi, what are you looking for?



Poland Breaks up Russian Spy Ring

Polish counter-intelligence has dismantled a Russian spy ring that gathered information on military equipment deliveries to Ukraine.

Polish counter-intelligence has dismantled a Russian spy ring that gathered information on military equipment deliveries to Ukraine via the EU member, Poland’s interior minister said Thursday.

“The ABW counter-intelligence agency has arrested nine people suspected of working for the Russian secret service,” Interior Minister Mariusz Kaminski told reporters.

“The suspects had been conducting espionage activities against Poland and preparing acts of sabotage on behalf of Russian intelligence services,” he added.

Kaminski said they were “foreigners from across Poland’s eastern border”.

Polish Defense Minister Mariusz Blaszczak had earlier said, “The whole network has been dismantled,” adding, “the threat was real”.

{ Read: Microsoft Pins Outlook Zero-Day Attacks on Russian Actor, Offers Detection Script }

Six of the suspects have been provisionally charged with espionage and participation in an organized criminal group. The other three were still being questioned.

Kaminski said the group’s tasks had been “reconnaissance, surveillance and documentation of arms transports to Ukraine”.

“The suspects had also been preparing acts of sabotage meant to paralyze the delivery of military equipment, arms, and Ukraine aid,” he added.

ABW agents seized electronic equipment, as well as GPS transmitters due to be installed on trains carrying aid to Ukraine.

On Wednesday, private Polish radio station RMF, citing unnamed sources, was first to report on the alleged spy ring operation.

It said the suspects were arrested after the discovery of hidden cameras on important railway routes and junctions, recording and transmitting data on traffic.

According to RMF, “dozens of devices” of this type were installed, mainly on sections of railways leading to the  southeast, including near an airport that is one of the main transfer points for Ukraine-bound Western weapons and ammunition.

Authorities are now on high alert and the security of railroads and strategic infrastructure has been reinforced, according to RMF.

Kaminski also said the group had been tasked with carrying out propaganda activity to destabilize Polish-Ukrainian relations as well as fomenting anti-NATO sentiment in Poland.

He said Poland has evidence that the group’s members received regular payment from Russia’s secret services.

Related: Microsoft: 17 European Nations Targeted by Russia in 2023 as Espionage Ramping Up

Related: Cyber Insights 2023 | The Geopolitical Effect

Written By

AFP 2023

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content


WASHINGTON - Cyberattacks are the most serious threat facing the United States, even more so than terrorism, according to American defense experts. Almost half...


Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet


Iranian APT Moses Staff is leaking data stolen from Saudi Arabia government ministries under the recently created Abraham's Ax persona


The war in Ukraine is the first major conflagration between two technologically advanced powers in the age of cyber. It prompts us to question...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...


Russia-linked cyberespionage group APT29 has been observed using embassy-themed lures and the GraphicalNeutrino malware in recent attacks.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...


A newly identified threat actor tracked as NewsPenguin has been targeting military organizations in Pakistan with sophisticated malware.