Poland’s Internal Security Agency (ABW) has documented confirmed breaches at five water treatment facilities and warns that Russian and Belarusian APT groups have shifted their targeting from espionage to direct interference with electricity, water, and transportation systems. Attackers are exploiting internet-exposed industrial control systems using known weaknesses rather than novel techniques, meaning the attack surface is broad and the barrier to entry is low. Organizations operating critical infrastructure connected to public networks face elevated risk of service disruption with potential cascading effects on public safety and operational continuity.