2025-04-05 12:00
publication
2025-04-05 12:00
The CSIRT KNF team reported in 2024 to CSIRT NASK, in order to block, 51.241 phishing domains, which is an increase of about 70 percent. RDR – reported a team of response to the computer security of the Polish Financial Supervision Authority in the annual report. CSIRT KNF also reported 45,985 dangerous domains related to false investments.
The increasing scale of the dangers that cyberspace users face are showed by the growing number of phishing domains detected by CSIRT KNF, which consists in extorting confidential data from users – PAP). The number of identified, fraudulent domains increased from 17.200 in 2022 to 30.140 in 2023 and to 51,241 in 2024
In addition, in 2024, CSIRT KNF reported 10,951 fraudulent advertising on social media. The most advertising of this type was recorded in May (1,699) and in July (1,455), while they were the least in March (436) and December (432).
It was also indicated that CSIRT KNF reported as much as 45,985 dangerous domains, which were associated with false investments, which is 89.4 percent. all reported domains.
“Advertisements of false investments identified by CSIRT KNF are one of the main threats imposed in the financial market in Poland. This type of attack is to encourage the victim to invest their savings in projects or investment products that actually do not exist,” it was written. “
As reported, for this purpose the images of politicians were most often used, who constituted 26 percent, while celebrities constituted 14 percent. reported by a team of domains promoting false investments, and State Treasury companies 11 percent, while entrepreneurs constituted only 6 percent.
“A large part of ads of false investments were also fraud related to the use of the theme of regaining lost funds. A large part of the ads concerned the use of the images of state -owned companies. The smallest percentage were crimes in which cyber criminals used the image of influencers, banking institutions or Tesla company,” wrote.
It was also indicated that fake surveys were the growing threat in 2024. In 2024, CSIRT KNF identified 4.030 such domains, which is the second most common type of fraud in the Polish financial sector.
“This is a significant increase compared to previous years,” it was written.
In addition, in 2024, CSIRT KNF identified 175 domains related to bank fraud.
“Cybercriminals on the websites they create impersonated the financial market entities and used them to steal data for login for electronic banking,” it was written.
The report also indicates that for the most important susceptibility in IT systems, which were actively used in campaigns conducted by Threat actors (a person or group who is trying to undermine or violate the security of data and systems – PAP) in 2024, security gaps identified in the products of the companies: Ivanti, Fortinet and Zimbra. (PAP Biznes)
mcb/ aa/
