Publication date: September 01, 2025
The development and dissemination of technology mean that internet users are facing an increasing number of threats. This development also brings with it a growing number of opportunities for those seeking to exploit this development to deceive others. To counteract this threat, particularly against personal data theft and the misuse of property, CERT Polska, a computer security incident response team operating within the Scientific and Academic Computer Network – National Research Institute (NASK PIB), is tasked with this goal. This is primarily achieved through the CERT Warning List. In 2024 alone, 92,600 malicious domains were added to the Warning List, compared to 79,300 the previous year. Approximately one in three reports submitted to CERT results in the website being added to the Warning List (in 2024, the CERT team analyzed over 300,000 reports). In 2024, the websites listed primarily offered fraudulent investments and were domains imitating popular portals to trick potential victims into providing login credentials. According to CERT data, the estimated number of visits to websites blocked by the Warning List reached nearly 72 million in 2024[1], demonstrating that CERT, together with the Warning List, plays an important role in protecting Polish internet users. This article outlines the procedure for adding websites to the Warning List and, consequently, blocking them.
More
Polish Act on the national cybersecurity certification system
Publication date: August 31, 2025
On August 28, 2025, the Polish Act of June 25, 2025, on the national cybersecurity certification scheme, entered into force, implementing Regulation (EU) 2019/881 of the European Parliament and of the Council of April 17, 2019, on ENISA (the European Union Agency for Cybersecurity) and cybersecurity certification in information and communication technologies and repealing Regulation (EU) No 526/2013 ( Cybersecurity Act ) (OJ L 151, 7.06.2019, p. 15 and OJ L 2025/37, 15.01.2025).
More
Publication date: August 26, 2025
What is CSIRT GOV and what is its legislative environment
The Polish Computer Security Incident Response Team (CSIRT GOV), led by the Head of the Internal Security Agency, serves as the national CSIRT. The CSIRT GOV is responsible for coordinating the response process to computer incidents occurring in the area specified in Article 26, Section 7 of the Act of 5 July 2018 on the National Cybersecurity System.
More
Publication date: August 22, 2025
The Polish Ministry of Digital Affairs is responsible for creating and implementing state policy in the areas of computerization, telecommunications, and digital security. It conducts activities aimed at modernizing public administration by implementing modern technological solutions and supporting investments in the digital sector. Its goal is to simplify contacts between citizens and businesses with the administration and increase the efficiency of public services. The ministry is also responsible for developing personal data protection policies, expanding digital services, and eliminating barriers to accessing technology. It manages key state registers, such as the PESEL (Polish National Identification Number), ID cards, identity documents, and vehicle and driver records. It oversees electronic identification systems and trust services, enabling citizens to safely use e-government. The ministry implements Poland’s international commitments in the field of digitalization and participates in shaping EU digital policy. Additionally, it oversees the activities of the President of the Office of Electronic Communications, ensuring the sustainability and development of the telecommunications market. All these activities aim to ensure a modern, innovation-friendly, and user-friendly digital state. The Minister of Digital Affairs supervises the Central Information Technology Centre, the Institute of Telecommunications, the Scientific and Academic Computer Network in Warsaw and the IDEAS Research Institute.
More
Publication date: August 20, 2025
Traditionally, Polish administrative procedures guaranteed the ability to communicate with the public authorities through conventional and traditional channels, i.e., in writing or in person. However, Poland has recently made a significant technological leap in the way businesses communicate with regulatory authorities. After January 1, 2025, in accordance with applicable regulations, this communication relies largely on electronic communication – both with the central government administration, central offices, and institutions regulating the modern technology, industrial, financial, pharmaceutical, energy, and, above all, TMT sectors.
Act on Electronic Delivery
More
