The Polish officials has confirmed that the country’s cybersecurity services had detected an unauthorized breach of the Polish Space Agency’s (POLSA) IT infrastructure. The cyberattack on POLSA prompted immediate action to protect sensitive systems and launch an investigation to identify the perpetrators behind the incident.
Minister for Digitalization Krzysztof Gawkowski reported the breach via his official social media account, stating that state cybersecurity services had discovered unauthorized access to POLSA’s network.
Decoding the Cyberattack on POLSA
He explained that in response, the affected systems were secured, and both the Cyber Security Incident Response Team (CSIRT) from the National Research Institute (NASK) and the Ministry of Defense (MON) were brought in to assist POLSA in restoring its operations. Gawkowski assured the public that intensive operational efforts were underway to determine who was behind the cyberattack.
“State services responsible for cybersecurity have detected unauthorized access to the Polish Space Agency’s IT infrastructure. In connection with the incident, the systems under attack were secured. CSIRT NASK, together with CSIRT MON, supports POLSA in activities aimed at restoring the operational functioning of the Agency”, says Minister for Digitalisation Krzysztof Gawkowski.
POLSA, established in 2014, is tasked with overseeing Poland’s space activities, including satellite development, space exploration, and the country’s involvement in international space missions. As a key institution in managing Poland’s space-related operations, a cyberattack on POLSA raises serious concerns about the potential exposure of sensitive information and threats to national security. To mitigate further damage, POLSA quickly disconnected its network from the internet, ensuring that no additional unauthorized access occurred.
While the investigation continues, the geopolitical context surrounding Poland’s support of Ukraine suggests that this attack could be linked to Russia. Poland has frequently accused Moscow of launching cyberattacks to destabilize the country due to its active role in providing military aid to Ukraine.
Rising Cybersecurity Threats and Poland’s Strategic Defense Measures
The cyberattack on POLSA is part of a larger trend of rising cyber threats faced by Poland in recent months. According to the Polish Cyberspace Defence Forces, Poland experienced a sharp increase in cyberattacks throughout 2024. In February of that year, Poland was reportedly the most attacked country in the world, with over 1,000 cyberattacks on organizations occurring each week.
To strengthen the country’s cybersecurity resilience, Poland has partnered with major technology companies, most notably Google. In 2014, Poland and Google signed a memorandum of understanding to develop artificial intelligence (AI)-driven solutions to enhance the nation’s digital security systems.
The partnership aims toupgrade Poland’s defenses against cyber threats and improve the security of critical infrastructures, such as energy systems.
Conclusion
The recent cyberattack on the Polish Space Agency (POLSA) highlights the nature of targeted cyberattack, often exploiting vulnerabilities in digital infrastructure and the growing threats of cyber warfare. The potential involvement of international actors, such as Russia, highlights the intersection of digital threats with political and military conflicts.