Beware of cyber threats
06.04.2022
Cyber threats have been on the rise for years. The challenges of cyberattacks have grown even more acute during the escalating crisis around Ukraine, particularly since Russia's military invasion of Ukraine began. In response to current threats the alert level ALFA-CRP was introduced in Poland, and then CHARLIE-CRP, which will be in force until April 15, 2022.
Since the introduction of the CRP alert grades the Team CSRiT GOV in ABW has been reporting an increased number of computer incidents. The most frequently reported incidents include phishing campaigns, spoofing, malware, scanning or DDoS attacks. The mentioned types of cyberattacks are currently the most serious threats to networks and ICT systems.
An analysis of malware (malicious software that infects a computer) attacks shows that attackers nowadays mainly use links encouraging users to download content to infect. The information encouraging the user to click on the link relates to the current situation and is created in a way to manipulate the user who is unaware of the risks. Distributed-denial-of-service (DDoS) attacks threaten availability and integrity by blocking access to services in the form of artificially generated increased traffic. DDoS attacks can be used to block vital services and systems for citizens, as well as to create panic in the public. Phishing or spoofing campaigns use the mechanism of impersonation, sending false announcements/messages that appear to come from a reliable source. In this case, attackers use psychological mechanisms to mislead the attacked individuals.
The ABW experts also identify scanning of the ICT infrastructure of state institutions and critical infrastructure, which occurs on a daily basis. The adversary tries to find vulnerabilities in the scanned systems that can be used for further actions in cyberspace.
Recent weeks events show that the introduction of alert levels in Poland was necessary. Thanks to the increased regime of the most important institutions in Poland, it is possible to effectively protect information and communication systems crucial to the functioning of our country.
The CSRiT GOV team operating in ABW, within the ARAKIS 3.0 GOV threat early warning system, transmits information about identified threats in the CRP, which allows entities to implement appropriate security rules for their own infrastructure and thus reduce the possibility of security breaches.
Spokesperson of the Minister-Special Services Coordinator