Over 140,000 Poles have found themselves on the list of victims of the latest hacking attack. The leak includes not only logins and passwords to popular services but also data linked to accounts in the gov.pl domain. Experts warn this is one of the most dangerous breaches in recent years.
The specialist portal CyberDefence24 revealed today that a file containing login data of more than 140,000 unique Polish accounts has surfaced online. It contains 200,000 lines, each entry including a service URL, an email address or login, and a password in plain text.
Among the stolen data are accounts used on social media platforms, email inboxes, gaming services, student e-journals, and—most concerning—within the government gov.pl domain, including Trusted Profile (Profil Zaufany). This means that accounts used for administrative tasks and identity verification in offices may also be compromised.
An Unprecedented Scale
What makes this attack stand out is not only its scale but also its form. This is not just a collection of so-called hashes or unreadable data. Full, ready-to-use logins and passwords have been leaked, which can be used immediately if the victims still rely on them. Analysis has shown that some passwords were set within the last three years (2022–2025), suggesting the data is fresh and may concern actively used accounts.
Experts from CyberDefence24 and CERT Polska have already been alerted to the incident. An important warning: if you reused the same password across different services, there is a high risk that just one stolen password could allow attackers to take over multiple accounts.
The scale of the leak is massive. The database contains 200,924 records, including 142,249 unique passwords, 89,141 email addresses, and 53,353 logins that are not email addresses. Many addresses come from popular domains such as WP.pl, Gmail.com, Onet.pl, and Interia.
Trusted Profile Also on the List
If your data has ended up in this database, you may be in serious trouble. Someone could use your password to impersonate you, steal your personal information, or gain access to other accounts you use daily. Much depends on whether you used simple passwords, enabled extra security, or repeated the same login details across different platforms. In practice, a single breach could mean losing access to your email, bank account, or important documents.
How to minimize the risk and protect yourself from hackers? The best move is to act immediately. First, change passwords for your most important accounts—email, social media, Trusted Profile, and any other services where security is crucial. At the same time, enable two-factor authentication wherever possible.
How to Stay Safe?
It is also worth checking whether your email address has appeared in this or other similar leaks. Tools such as Have I Been Pwned or the government platform BezpieczneDane.gov.pl can help with that.
Cybersecurity experts remind users to always rely on unique and lengthy passwords instead of simple combinations or names, and, if needed, to use a password manager. It is equally important to protect your devices—keeping your system updated, using trusted security software, and avoiding suspicious links. Malicious software remains one of the most common sources of such leaks.
