Quick and unhindered access to information is an attribute of social and economic development, and the func-tioning of the entire state depends on the efficiency and stability of ICT systems. Progressive digitization makes digital security more important than ever. Its violation is associated with the risk of violating the security of citizens, taking over sensitive data, including personal data, violating privacy, losing money, and often also health. Effective counteraction requires permanent construction and development of the cybersecurity system. This is only possible when knowledge about the scale and type of incidents that occur is available, which is the aim of this article. It was assumed (research hypothesis) that in the virtual world incidents from the group of malicious software or events related to unlawful collection of information are taking place more and more often. The study was based on incident data coordinated by the CSIRT GOV (Governmental Computer Security Incident Response Team). Data was collected on the number of notifications and actual incidents on a quarter-ly and annual basis, as well as their quantitative distribution in individual categories. The information was obtained from the reports of the CSIRT GOV team from 2010-2020. Using mainly the method of scientific ob-servation, examination of documents, mathematical analysis and inference, groups were identified that are characterized by a clear increase in the number of incidents in recent years and which require intensification of preventive measures. The analysis was presented on the basis of Polish reports, however, the observed rela-tionships may indicate global trends.