In March 2026, Poland’s National Centre for Nuclear Research (NCBJ) detected and blocked a cyberattack against its IT infrastructure; operational systems at the MARIA reactor were not affected. Polish authorities assess Iran as the likely threat actor at medium confidence, with investigators explicitly acknowledging false-flag possibilities. This incident is part of a sustained, multi-actor campaign targeting Polish critical infrastructure, including a confirmed APT44 attack on the Polish power grid in January 2026 and 31 Russian-attributed cyber incidents since mid-2025, indicating that NATO-member nuclear and energy sectors face elevated, persistent targeting with strategic intent.