Continue reading on DataGuidance with:
Free Member
Limited ArticlesCreate an account to continue accessing select articles, resources, and guidance notes.
Already have an account? Log in
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Poland: Government Plenipotentiary for Cybersecurity issues recommendations after increase in data leaks
On October 18, 2024, the Government Plenipotentiary for Cybersecurity, Krzysztof Gawkowski, reported a rise in data leak incidents in Polish cyberspace, including a recent cyberattack on AIUT Sp. z o.o. The stolen data may involve personal data, contracts, concluded contracts, inquiries, information about ongoing tenders, data to access customer service accounts, technical specifications of projects, and other sensitive information.
What are the recommendations?
The Government Plenipotentiary for Cybersecurity recommends the following actions to minimize the effects of the attack and prevent further threats:
- reviewing IT/IoT infrastructure implemented with AIUT;
- blocking remote access to AIUT service accounts;
- analyzing logs from September 1, 2024, to detect possible unauthorized use of service accounts;
- changing credentials for all accounts and systems related to AIUT;
- implementing two-factor authentication;
- monitoring social engineering campaigns that use AIUT's image; and
- reporting incidents to Computer Security Incident Response Team (CSIRTs).
Additional measures include regular software updates.
You can read the press release, only available in Polish, here.
Send us your Feedback!
Please let us know what you think of DataGuidance! It will only take 60 seconds and help us make the site better for you.
