“Poland is the Most Attacked Country in Europe.” CERT Polska Summarizes 30 Years of Activity

In an increasingly digital world, the need for robust cybersecurity has never been more critical. Poland’s pioneering online threat response team, CERT Polska, recently celebrated its 30th anniversary, marking three decades of safeguarding the nation’s digital landscape. Established within NASK (Naukowa i Akademicka Sieć Komputerowa – the Research and Academic Computer Network), the team has witnessed an exponential surge in cyber incidents, from just 12 reported in 1996 to over 260,000 in 2025. This alarming increase underscores the growing number of threats impacting the safety and security of Polish citizens as the country continues its rapid digitalization.

A Brief History of CERT Polska

CERT Polska stands as the first computer incident response team in Poland. Founded in 1996 as CERT NASK within the structures of NASK, its primary mission from the outset was to respond to internet security breaches. Early on, the team joined the international forum FIRST (Forum of Incident Response and Security Teams), an organization uniting hundreds of CERTs worldwide, solidifying its commitment to global cybersecurity collaboration. In 2001, the team was officially rebranded as CERT Polska.

Since 2018, with the implementation of the National Cybersecurity System Act, CERT Polska has taken on the responsibilities of CSIRT NASK. It operates as one of three national-level teams (alongside CSIRT GOV and CSIRT MON), specifically tasked with protecting the civilian segment of the Polish internet infrastructure.

Celebrating Three Decades: The CERT Polska Conference

On March 11, 2026, a significant conference titled “Fighting Cyber Threats – 30 Years of CERT Polska” was held to commemorate the team’s three-decade milestone. The event saw participation from key figures, including Deputy Prime Minister and Minister of Digitization Krzysztof Gawkowski, NASK-PIB Director Radosław Nielek, and CERT Polska Head Marcin Dudek.

“For over 30 years, CERT Polska has been responsible for monitoring threats in Polish cyberspace, analyzing incidents, and responding to cyberattacks. These are the experts who have built Poland’s shield in cyberspace. Over these three decades, we have built an institution that serves as a model…”

– Ministerstwo Cyfryzacji (Ministry of Digitization), March 11, 2026

During the conference, Deputy Prime Minister Krzysztof Gawkowski emphasized the critical role of cybersecurity in national defense:

“Cybersecurity has become a key pillar of state security. No one is under any illusions today – we are in a hybrid cyberwar. Poland is the most attacked country in Europe. We must defend Polish citizens in cyberspace every day. In this system, CERT Polska plays a special role – one of the most important computer security incident response teams in our country.”

– Deputy Prime Minister and Minister of Digitization, Krzysztof Gawkowski

Attendees also gained valuable insights into CERT Polska’s extensive activities and initiatives throughout its history.

Key Achievements and Successes of CERT Polska

CERT Polska’s contributions to national cybersecurity are extensive and impactful. Some of its most notable successes include:

• The Warning List (Lista Ostrzeżeń)

  One of the most visible outcomes of CERT Polska’s work is the Warning List, a public registry of malicious websites used for phishing and financial fraud. Since its launch in 2020, analysts have added over half a million domains to this list, with approximately 685 new entries daily. In 2025 alone, the team successfully blocked over 140 million attempts to access these dangerous websites, significantly protecting users from scams.

• Proactive Threat Monitoring and Incident Reporting

  A core mission of CERT Polska is continuous monitoring of cyber threats. This is achieved through dedicated specialized teams and invaluable submissions from internet users reporting phishing campaigns, malware, and unauthorized system access attempts. Over its 30-year history, the team has received more than 2 million such pieces of information from the public.

  Users can report suspicious SMS messages by forwarding them to the toll-free number 8080. Other types of incidents can be reported via the form available on the incydent.cert.pl website and through the “Bezpiecznie w sieci” (Safe Online) service within the mObywatel application.

• Artemis System: Vulnerability Scanning

  The Artemis system, developed by NASK, is a sophisticated vulnerability scanner. It analyzes the configurations, services, ports, and popular Content Management Systems (CMS) used by Polish public and private entities. This system has already scanned millions of domains, subdomains, and IP addresses, identifying hundreds of thousands of vulnerabilities, including those classified as high-risk threats.

• moje.cert.pl Platform: Domain Security Monitoring

  Further strengthening online security is the moje.cert.pl platform. This service allows users to monitor the security of their domains, with 17,000 users currently monitoring over 20,000 websites. To date, the system has detected over 5.3 million password leaks and 600,000 vulnerabilities.

• CVE Numbering Authority (CNA)

  Notably, CERT Polska holds a unique distinction as the only institution in Poland authorized to assign CVE (Common Vulnerabilities and Exposures) numbers. This is part of an international program designed to support the disclosure of security flaws in computer software, further cementing CERT Polska’s role in global cybersecurity efforts.

Source: NASK, Ministry of Digitization, Wikipedia. Opening photo: Gemini

About Post Author

Sachin Mahto

Sachin is an editor for Techtiper, focusing on software, apps, and services. He writes on virtual private networks, privacy tools, cybersecurity issues, and ethics in tech. Sachin also covers news about Tech Industry. On a separate note, he plays a ton of online chess and is a fan of overly complicated sci-fi movies.

See author's posts