Poland’s National Revenue Administration has issued an urgent warning about a new wave of phishing emails targeting taxpayers and seeking personal data.
Tax Scam Alert: Experts Warn of Increased Activity
The National Revenue Administration (KRA) has issued an urgent warning regarding a new wave of internet fraud targeting taxpayers. Criminals are sending emails that closely resemble official correspondence, aiming to steal personal data and access bank accounts.
The KRA reports a recent increase in cybercriminal activity leveraging the image of public institutions. Scammers send emails visually mimicking official communications from tax offices or the Ministry of Finance.
How the Scam Works
The attack mechanism is simple but effective. Users receive emails suggesting an urgent payment, data verification, or tax refund. Opening the attached HTML file can trigger malicious software.
Victims are directed to a fabricated website that closely resembles the official tax administration portal. Entering login credentials or personal information results in the data being compromised by the criminals.
Official Communication Practices
The tax administration emphasizes that such messages are not sent from its IT systems. Fake sender addresses often contain subtle modifications that may go unnoticed.
Identifying and Avoiding Phishing Attempts
Cybersecurity experts highlight careful analysis of the message sender as a key protective measure. Official electronic correspondence from Polish tax authorities originates exclusively from the “podatki.gov.pl” domain, specifically from the address e-urzadskarbowy@podatki.gov.pl.
False messages frequently contain linguistic errors, unnatural sentence structures, or create a sense of urgency – classic social engineering techniques designed to prompt quick action without verification.
Risks Associated with Attachments and Links
Attachments and links leading to external sites are particularly dangerous. Opening them can result in malware installation or phishing attempts to steal login credentials, such as those for online banking.
Phishing Trends in Poland and Europe
According to cybersecurity firms, phishing remains one of the most common attack methods in Poland. CERT Polska has repeatedly noted that public institutions are regularly used as “bait” due to the trust they inspire.
The increasing number of these incidents aligns with a broader trend of cybercrime in Europe. Data from the European Union Agency for Cybersecurity (ENISA) shows that phishing attacks are now one of the main forms of threats to individual users.
Protecting Yourself from Phishing and Data Loss
A fundamental principle is limited trust in unexpected emails, especially those containing attachments or links. If in doubt, contact the tax office directly through official communication channels.
Specialists also recommend using additional security measures.
The tax administration does not request confidential data via email or send attachments requiring login to external systems.
Consequences of Opening a False Attachment
The consequences can be serious and multifaceted. Beyond the loss of personal data, such as PESEL number, address, or login details, victims are exposed to financial theft. Criminals use stolen information to access bank accounts, take out loans, or make unauthorized transactions.
In extreme cases, complete digital identity theft can occur, leading to long-term legal and financial problems.
Experts emphasize the importance of a swift response. If fraud is suspected, immediately contact your bank and report the incident to the appropriate authorities, such as CERT Polska or the police.
