Poland spends $760 million on cybersecurity following attack
On May 31, at 2 p.m. Polish Time, visitors to the Polish Press Agency website were greeted with an unusual message. The state-run paper had published a story instead of the usual daily news. It said that the Polish Prime Minister Donald Tusk had ordered a partial mobilization which means calling specific people to serve as soldiers starting on July 1, 2024.
Deputy Prime Minister Krzysztof Gawakowski refuted this claim on X.com (formerly Twitter). His post read: “The message [from] @PAPinformacje regarding partial mobilization is false. We have begun an urgent investigation. All signs point to a cyberattack, and disinformation planned! I will keep you informed on any further arrangements.”
After this cyberattack Poland announced that it will increase its cybersecurity spending by almost $760 millions to improve digital safety.
Misinformation spreading by a suspected Russian-directed malware
Gawkowski said in an interview with Polsat News, that the goal of this attack was to spread misinformation before the election, to paralyze the society. He also revealed that the false posts had been delivered via malware and detected within two minutes.
Gawkowski says that “everything indicates that the cyberattack was launched from the Russian side.” “And the goal is disinformation before the election, paralyzing the society, and showing that Russia can influence the elections in Poland today,” said Gawkowski.
Gawkowski claims that Russia is alleged to have been the perpetrator of the attack. However, Russia has denied any claims.
Use of funds to improve digital safety
The Polish government wants be prepared for future threats. Gawkowski announced on June 3, 2024 a plan to increase the cybersecurity budget.
Gawkowski said at a press conference that “we want to allocate more than 3 billion zlotys” for a “Cyber Shield.” “Today, Poland leads the cyber war against Russia. Poland is the country with the most cyber attacks. (Russia) is trying to destabilize and benefit the forces that support the breakup of Europe.
Gawkowski stated that the new funding plan would be a joint effort of the government, the Ministries of Interior and Digitalization. The additional funds will go towards creating a cyber shield which will perform regular security reviews, and build resilience in critical infrastructure. These efforts are aimed at demonstrating to the world that Poland is an innovator in digital security and digital transformation in Europe. He said that the specific details about the steps the government plans to take will be kept confidential in order to protect the country.
Protecting against disinformation attacks
Poland was the victim of a deception attack. This occurs when cyber criminals spread falsehoods to mislead or harm others, or to make money. This type of attack aims to deceive. It’s often multi-pronged with information being spread in various ways and places.
Here are some tips to reduce risk and prepare for a disinformation campaign:
- Use social media monitoring software. Social media is a common channel for disinformation attacks. Organizations can reduce their risks by monitoring social media platforms.
- Training is essential. Training is often overlooked for this type attack, both on how to recognize it and how you can respond. Include your communications team as there is a component of public relations.
- Include disinformation attacks into your crisis response plan. Include a section in the plan that explains how to respond to disinformation attacks.
Businesses and nation-states that focus on this type of attack and create a cyber shield can reduce the risk and recover faster when a disinformation campaign occurs.
Learn how IBM X-Force, including incident response, threat analysis, and offensive security services, can help you. Schedule a meeting.
Global hotline (+001) 312-212-8034.
News: More on News
June 20, 2024
New ransomware targeting browsers targets uploaded files
3 minute read – Everyone has a mental list of things to avoid when online: clicking on unknown links, using public networks, and downloading files randomly sent via email. In the past, ransomware was usually installed on your computer or network when you downloaded a malicious file. Now it’s time to include a new item on our list of high-risk activities: be cautious when uploading files. What is ransomware on browsers? Researchers at Florida International University and Google worked together to…
June 18, 2024
Exploring the 2024 Worldwide Managed Detection and Response Vendor Assessment
Read this article in 3 minutes. IDC, a research firm, recently released their 2024 Worldwide Managed Detection and Response vendor assessment. This report highlights the leaders in the market and examines MDR’s evolution as a critical part of IT security infrastructure. Here are some key takeaways. According to the assessment “the MDR has evolved extensively over recent years.” This should be viewed as a positive development as MDR providers had to evolve in order to meet the increasing…
June 17, 2024
Regulatory harmonization for OT-critical infrastructure is a challenge
Read in 3 minutes – To improve cyber resilience across critical infrastructures, the Office of the National Cyber Director has released a summary of the feedback received from its 2023 Cybersecurity Regulatory Harmonization Request for Information. The responses reveal that critical infrastructure industries are concerned about operational technology (OT), including energy, transport, and manufacturing. They are concerned about the fragmented regulatory environment and the difficulty in adapting to new cyber laws. The frustration seems to be universal. The magnitude of…
Topic Updates