CERT Poland maintains lists of suspicious sites in various formats https://cert.pl/lista-ostrzezen/

That should be used for filtering as well and updated every 5 minutes (as stated in the doc) so that users are protected from phishing quickly. Competition uses that list as well.

this list is maintened and used in cooperation with polish government as well as biggest ISPs. This is crucial for protecting and encouraging customers from this country and main arguement in discussion dns filter against competition.

Taking into account that Poland is under constant attack also because of the geopolitical reasons tat is a must as many malicious campaigns arise and only cert.pl delivers fast response and listing of malicious urls.