The Polish Financial Supervision Commission’s CSIRT (CSIRT KNF) published its Annual Report on Cybersecurity 2025, summarising key cyber threats and trends and the actions taken to improve the security of the financial market. The report points to a more complex cyberthreat landscape, with a growing emphasis on attacks targeting technology, IT service and software providers used by financial institutions, increasing supply chain risk and the potential for incidents to affect the wider market. Data for 2025 include 41,751 dangerous domains for which blocking orders were requested, 9,751 fraudulent advertisements blocked, and 787 DDoS attacks against the financial sector, alongside 274 ICT incident reports accepted under DORA. CSIRT KNF issued 625 threat warnings, 19 sector-specific recommendations and 51 entity-specific recommendations following security screenings, and it notes increased ransomware group activity, including monitoring of data-leak publications to assess potential supply chain impacts and inform affected entities earlier.
Polish Financial Supervision Commission (KNF) 2026-03-23
Polish Financial Supervision Commission publishes CSIRT KNF Annual Cybersecurity Report 2025 highlighting supply chain threats and DORA incident reporting volumes
The Polish Financial Supervision Commission's CSIRT published its Annual Report on Cybersecurity 2025, highlighting a complex cyberthreat landscape with increased attacks on technology and IT service providers, raising supply chain risks. The report details 41,751 dangerous domains, 9,751 blocked fraudulent ads, and 787 DDoS attacks, alongside 274 ICT incident reports under DORA. CSIRT KNF issued 625 threat warnings and 70 recommendations, noting heightened ransomware activity and proactive monitoring of data-leak publications.