Cyberattack targets Polish municipalities, mayors in phishing campaign

Published: 30 October 2025
poland flag on water, 4 screens with black and white illusions
Image by Cybernews.

Poland has issued a warning about an ongoing phishing campaign targeting municipalities nationwide. Cybercriminals are reportedly impersonating the Ministry of Digital Affairs to trick recipients into disclosing cybersecurity information or passing on malicious software.

Polish mayors and other officials, especially those responsible for cybersecurity, are receiving emails in which the sender impersonates Deputy Minister Paweł Olszewski.

The messages, which include pictures of Olszewski and the ministry’s logo, fall into two categories, according to CyberDefence24.

ADVERTISEMENT

In one, senders target mayors and municipal leaders, asking them to verify employee personal data in an attached file. The cybercriminals lie that it’s an “enhanced security standard.”

CERT Polska, the country’s cybersecurity response team, warned that the file contains a link to malicious software.

jurgita justinasv Izabelė Pukėnaitė vilius Ernestas Naprys Gintaras Radauskas
Don't miss our latest stories on Google News. Add us as your Preferred Source on Google
Follow us

The second type of email is an outreach to verify contacts under the National Cybersecurity Program. Recipients are asked to submit the contact information of staff responsible for cybersecurity within 48 hours.

The Ministry of Digital Affairs stated that it never requests confidential information such as passwords via email. Officials have been urged to ignore attachments or links in suspicious emails and verify the sender’s domain before responding.

So far, the giveaway is typical when it comes to phishing – emails come from addresses ending in .govministry instead of the official .gov. domain.

hydropowerplant, russian nad polish flags, white numbers, smoky background, black clounds
By Cybernews.

Cyberattacks on local governments and strategic facilities within their knowledge have become a regular target. Cybernews has previously reported on Russian hackers disrupting the work of a small hydropower plant in Poland.

ADVERTISEMENT

In September, Poland increased its cybersecurity budget to €1 billion after a series of Russian hacks on hospitals.

As reported previously, the ongoing cyberattacks, 170,000 in total up until September this year, are seen as Russia’s response to Poland proactively supporting Ukraine in the ongoing war.

Unlock more exclusive Cybernews content on YouTube.

Share
Post
Share
Share
Share
More from Cybernews
Meta has quietly shipped the technology needed for facial recognition glasses
Hackers getting an easy ride: misconfigured cloud settings behind growing number of data breaches
Anthropic claims AI is too fast and needs to hit the brakes: let’s take it with a pinch of salt
US lawmakers push new bill on AI safety, state law limits, worker protections
Pewdiepie declares war on big tech following the release of his free and local AI workspace
California tech CEO busted for selling forbidden US technology to Iran’s nuclear agency
ADVERTISEMENT
Leave a Reply

Your email address will not be published. Required fields are markedmarked