The most severe threat to Polish cyberspace users were (and still are) banking trojans. In 2014, CERT Polska observed the rise of Tinba, VMZeuS, Kronos and IFSB families. All of the mentioned malware uses so called “webinjects” little snippets of (usually JavaScript) code that are injected in the online bank website to perform specific tasks, like using social engineering to steal one time passwords.
Download CERT Polska 2014 report from here – http://www.cert.pl/PDF/Report_CP_2014.pdf