The vast majority of reported cyber incidents in Poland concerned malware attacks, including viruses, trojans, dialers, rootkits, and the like. A frequently observed attack was an e-mail with a supposed invoice, notification or document, sent on behalf of a well-known company containing files with a text, or Internet address for downloading malware. Criminals willingly used various types of software such as ransomware and so-called banker, i.e., malware targeted at customers of electronic and mobile banking. This alarming result is the effect of many targeted, organized, and well-thought-out campaigns. One of the biggest was the one using dangerous attachments or e-mail links to fake invoices.
In 2018, the number of phishing sites remained at a very high level. The most frequently reported phishing incidents were fake websites of foreign services, such as Netflix or PayPal, placed on Polish servers. The most common motive of criminals when creating fake websites was to obtain authentication data (login and password) for various services, including banks.
Analyzing the latest phishing methods, nowadays, a cybercriminal is not only a programming specialist but also a psychologist. Phishing, another fastest-growing category of cyber threats, has more and more in common with a subtle knowledge of the human psyche, our habits, and preferences. A hacker aims to force an Internet user to perform a particular activity, offering him/her the illusion of security and comfort.
Online risks for children and young people relate to access to illegal and harmful content. These are mainly pornographic, neo-Nazi, xenophobic, racist, promoting various types of sects, as well as photos and videos depicting violence, materials encouraging the use of drugs, or experimenting with one's health.
Another threat to children and young people on the Internet is the possibility of contact with strangers, which can be dangerous. Sexting and sextortion are common phenomena faced by Internet users regardless of age, gender, or origin. In recent years, these cases have become more frequent and take very different forms. They may include sexting material that is sent to someone and distributed without the victim's consent or knowledge. Additionally, it may be content resulting from child grooming, or other third-party activities.
Cybercrime, in its broadest sense, is also a significant threat to companies. Most entities also identify organized cybercrime groups, cyber-terrorists, and disgruntled or bribed employees as a real threat to company security. Is there an effective method of protection against cyber-attacks? Cybersecurity issues for terminal equipment (smartphones, tablets, laptops, desktops, printers, and MFPs) in the private and public sectors is an area that requires substantial investment and education. The challenge for companies in the coming years will be to provide adequate cyber protection for their businesses and to raise awareness among employees about the safe use of terminal equipment in the performance of their duties.