A major cyberattack has rocked Poland’s financial technology sector after hackers breached the systems of SuperGrosz, one of the country’s most popular online lending platforms, stealing extensive personal data from thousands of users. The incident has been described by Polish officials as “very serious,” raising renewed concerns over the security of digital financial platforms and the growing frequency of cyber threats targeting Polish institutions.

The cyberattack, confirmed by Poland’s Deputy Prime Minister and Minister of Digital Affairs, Krzysztof Gawkowski, has resulted in the theft of highly sensitive personal data from SuperGrosz customers. According to Gawkowski, the stolen information “ended up in the hands of criminals,” suggesting that the data may already be circulating among cybercrime networks or on illicit online marketplaces.

The scope of the breach is alarming. The stolen records reportedly include a wide range of personally identifiable information (PII), such as names, nationalities, PESEL numbers (Poland’s national ID), identity card details, residential and mailing addresses, phone numbers, email addresses, and even Facebook identifiers. In addition, the hackers gained access to data related to marital status, number of children, employment details, employer addresses, tax identification numbers (NIP), declared income, bank account numbers, and other financial data.

In essence, the information stolen from SuperGrosz users could allow cybercriminals to conduct identity theft, financial fraud, or social engineering attacks. Experts warn that the combination of PESEL numbers and banking information is particularly dangerous, as it can be used to open fraudulent accounts or apply for loans in victims’ names.

Minister Gawkowski emphasized the gravity of the situation in a statement posted on X (formerly Twitter), calling it “a very serious cyber security incident” and confirming that specialized teams were responding. The CSIRT KNF (Computer Security Incident Response Team for the Financial Supervision Authority) and CSIRT NASK (the........

© Blitz