The Guardia Civil has successfully recovered more than €17,000 stolen in a sophisticated cyber fraud case in Huércal-Overa, Almería, after a Business Email Compromise (BEC) scam targeted a local company and the town hall. The incident, involving a “Man in the Middle” attack, highlights the rising threat of cyber fraud in Spain and underscores the importance of swift action and robust digital security measures for businesses and public institutions.
How the cyber fraud unfolded in Huércal-Overa
The fraudsters used the “Man in the Middle” technique to intercept email communications between the affected company and Huércal-Overa Town Hall. By impersonating a legitimate supplier, they modified bank account details on several invoices, redirecting payments into an account controlled by the criminals. This type of cyber-enabled financial crime, known as Business Email Compromise, is increasingly common and often exploits the trust between commercial partners.
Rapid investigation leads to recovery
The investigation began when the company noticed irregularities in payment destinations. Thanks to prompt reporting, the Guardia Civil’s specialised team collaborated with judicial authorities and banking institutions to quickly identify and freeze the fraudulent account. This swift intervention resulted in the successful recovery of €17,013.70. Authorities have also launched international enquiries, including cooperation with Portuguese officials, to trace a suspect believed to be linked to the operation.
Protecting businesses from email fraud
Officials warn that cyber-enabled fraud remains a growing threat and urge businesses and public bodies to implement preventative measures. These include verifying any changes to payment details through direct phone contact, remaining cautious of urgent email requests, and checking sender addresses carefully.
Cyber security best practices
The Guardia Civil recommends that organisations adopt two-factor authentication, internal double-verification procedures, and staff training on recognising phishing and social engineering attacks. Prompt reporting to banks and law enforcement is crucial to block fraudulent transfers and maximise the chances of recovering stolen funds.
This case in Huércal-Overa serves as a reminder that vigilance, combined with strong cybersecurity protocols, is essential to prevent losses from increasingly sophisticated online scams.
Elli Freeman
Originally from the UK, Elli has lived in Spain for more than half of her life. She holds a B.A in English Literature and Creative Writing. Before joining the Euro Weekly News team, Elli was an avid traveller, with a keen interest in exploring new cultures.
Comments