Norwegian authorities say pro-Russian hackers gained access to the Bremanger dam’s critical operation systems and opened the outflow valves, in what officials described as a demonstration of Moscow’s ability to disrupt infrastructure remotely.
At the Arendalsuka forum in Arendal, PST head Beate Gangås said the operation was a display of what the attackers can do. They don’t necessarily aim to cause destruction, but to show what they are capable of.
She added that The purpose of these kinds of actions is to exert influence and create fear or unrest in the population
, noting that Russia has become more dangerous.
Local media reports said the hackers compromised a digital system controlling water flow at the Bremanger dam and set the outflow valves to the open position. Operators detected the change after roughly four hours and reversed it; by that time, more than 7.2 million liters of water had flowed through.
The National Criminal Investigation Service (Kripos) reached the same conclusion in June, based on videos that Russian hacktivists published on Telegram to prove their intrusion.
The attackers published a three-minute video showing the dam’s control panel, featuring a watermark linked to a pro-Russian cybercriminal group. Such acts have been associated with state-sponsored groups like Sandworm and are viewed as efforts to exaggerate impact and publicly humiliate targeted organizations.
This incident marks the second time Russia has been linked to attacks against Norwegian entities, the first being a DDoS assault on the country’s state services. Norway’s Intelligence Chief, Nils Andreas Stensønes, said that while Norway is not at war with Russia, President Putin maintains tension through hybrid attacks against the West, describing Russia as an unpredictable neighbor and the biggest current threat to Norway.
Officials say the investigation continues as authorities assess broader security implications for Norway’s critical infrastructure.