Ukrainian Cyber Gangs Target Polish Victims in Sophisticated Fraud Networks
Highly organized cybercrime groups composed largely of Ukrainian nationals are increasingly targeting Polish victims through sophisticated bank and investment fraud schemes, resulting in millions of euros in losses. According to reports from the Polish Central Bureau for Combating Cybercrime (CBZC), Ukrainian criminals account for more than 90% of identified members in dismantled cybercrime networks, with individual fraud cases typically involving between €5,000 and €24,000 per victim.
Background and Context
The scale of online fraud in Poland has reached alarming levels, with cases exceeding 93,000 in 2024, up from 85,000 in 2023. These criminal operations leverage sophisticated social engineering techniques, with fraudsters operating from call centers in Ukrainian cities including Kyiv, Odesa, and Kharkiv. According to reporting by Rzeczpospolita, the financial daily newspaper, the problem has grown exponentially as criminal groups professionalize their operations.
Key Figures and Entities
The criminal networks exhibit corporate-like structures, with one particularly successful gang defrauding approximately 1,500 victims of 75 million złoty (about €18 million) over three years. According to CBZC investigators, this group was led by individuals with connections to Ukraine's justice system and political activities. In another case, authorities arrested a gang leader in a luxury penthouse where $600,000 in cash was discovered, highlighting the substantial profits generated by these operations.
Legal and Financial Mechanisms
The fraud methodology follows a deceptively simple yet effective pattern. Victims receive calls from individuals posing as bank employees who claim their personal data has been compromised and their savings are at risk. The fraudsters then convince victims to transfer funds to supposedly secure "technical accounts"—which are in fact shell accounts controlled by the criminals. According to Tomasz Safjański, a professor at WSB University and deputy director of the Center for Cross-Border Security Research, these groups employ highly trained individuals who work from refined scripts and use local phone numbers and email addresses that closely mimic official financial institutions.
International Implications and Policy Response
The cross-border nature of these operations presents significant challenges for law enforcement and regulatory authorities. According to CBZC spokesperson Marcin Zagórski, these criminal groups operate with professional corporate structures, including departments for management, human resources, IT, administration, legal affairs, marketing, and accounting. Some organizations even maintain separate divisions serving "clients" from different countries, with capabilities in Russian, English, Italian, and Spanish. The exploitation of trust between Polish and Ukrainian communities—as noted by Professor Safjański, who emphasized that "this refers not to the entire Ukrainian community, but to specific criminal circles"—underscores the social dimensions of cybercrime that complicate prevention efforts.
Sources
This report draws on investigative reporting by Rzeczpospolita, statements from Poland's Central Bureau for Combating Cybercrime (CBZC), and expert analysis from academic security researchers at WSB University's Center for Cross-Border Security Research. The information reflects documented cases between 2023 and 2024.
