University of Warsaw detects ransomware attack on IT infrastructure on 17 February 2026; ongoing analysis finds no confirmed breach of personal data.
Incident Confirmed
The University of Warsaw reported a cybersecurity incident involving ransomware detected in part of the university’s IT infrastructure. Technical and legal analyses are underway, and according to the UW statement and the message from Deputy Prime Minister and Digital Minister Krzysztof Gawkowski, current findings do not indicate unauthorized access to personal data.
Official Statements
On 17 February 2026, the University of Warsaw announced that ransomware was detected in part of its IT infrastructure. Concurrently, Deputy Prime Minister and Digital Minister Krzysztof Gawkowski reported the identification of a hacker attack on part of the UW IT infrastructure.
UW emphasized that technical and legal analysis is ongoing. The university also stated that at this stage, there is no confirmation of unauthorized access to personal data. The minister of digitization also publicly conveyed this information.
Scope of the Attack
According to the university’s communication, the Minister of Digitization conveyed that malicious software was identified on one of the UW’s workstations, and the incident affected part of the infrastructure.
Response and Investigation
UW reported the matter to authorities. The university indicated that technical actions have been taken to detect and remove unauthorized access, and verification of system integrity has begun. The Minister of Digitization informed about the actions of the services and steps to limit the effects of the breach and help identify the perpetrators.
Cybersecurity Recommendations
UW reminds about cyber hygiene principles when using IT devices and services. This includes updating software, using strong and unique passwords, enabling 2FA, being cautious with messages and attachments, using secure connections (including the university VPN for remote work), protecting documents and media, and encrypting data.
Broader Implications
The Minister of Digitization drew attention to the need for public institutions and companies to continuously strengthen system protection and to act in accordance with the principles of the National Cybersecurity System.
