b2b-daily
Home | IT | Cyber Security

Spanish authorities have arrested a cybercrime group involved in phishing and extortion. Millions of dollars were extorted from victims

Avatar photo
by Paige Williams
October 24, 2023
Image Credit: Pexels
Spanish authorities have arrested a cybercrime group involved in phishing and extortion. Millions of dollars were extorted from victims
Table of Contents
  1. Background
  2. Arrests and investigation
  3. Methods and Targets
  4. Techniques and Scams
  5. Collaboration with other criminals
  6. Legal actions and confiscations
  7. Implications and lessons

Spanish authorities have made a significant breakthrough in the fight against cybercrime, arresting more than two dozen members of a sophisticated cybercrime group. This group, operating out of various locations in Spain, utilized phishing, smishing, and vishing techniques to orchestrate financial fraud, ultimately extorting millions from victims. The arrests come as a result of a year-long investigation launched by the Spanish cybercrime unit.

Background

The cybercrime group, now in custody, had been conducting its fraudulent activities across Spain for a considerable period of time. Using phishing, smishing (SMS phishing), and vishing (voice phishing) techniques, the group targeted unsuspecting individuals and organizations to extract sensitive financial information. Their criminal activities involved illegally accessing financial databases, making subsequent money deposits, and contacting account holders to demand the money.

Arrests and investigation

After a thorough and extensive year-long investigation, Spanish authorities, on Saturday, managed to apprehend 34 members of the cybercriminal group, including its leader. This significant breakthrough not only halts the group’s ongoing illegal activities but also potentially saves millions from falling victim to their scams. The investigation revealed that over 4 million people may have been affected by the group’s fraudulent tactics, with banking customers being their primary targets.

Methods and Targets

The cybercrime group skillfully gained unauthorized access to financial databases, exploiting vulnerabilities and loopholes to take control of sensitive information. Once inside, they deposited money illegally and proceeded to contact account holders, using coercion and threats to demand immediate payment. The range of targets was vast, affecting individuals as well as businesses and leaving a trail of financial devastation in their wake.

Techniques and Scams

The cybercrime group employed a range of techniques to deceive their victims. One prevalent tactic was the creation of spoofing websites, specifically mimicking legitimate financial institutions and utility companies. By using these spoofed websites, the criminals successfully tricked unsuspecting individuals into divulging their personal and financial information, allowing the group to gain control of their accounts. Additionally, the group engaged in “child in trouble” scams, exploiting the empathy and vulnerability of their targets to defraud them of their hard-earned money.

Collaboration with other criminals

The arrest of this cybercrime group has uncovered a widespread network involved in criminal activities. The group not only extorted money from their victims but also sold custom phishing pages to other criminals on underground forums. In an attempt to conceal their earnings, they funneled their illicit gains through investments in crypto assets, making it challenging for authorities to trace their unlawful activities.

Legal actions and confiscations

The recent arrests have resulted in the imprisonment of the main leaders of the network. These individuals have been placed in provisional prison, pending further legal actions and convictions. In addition, Spanish authorities have clarified over 1,000 complaints, shedding light on the vast extent of the cybercrime group’s activities. Moreover, during the operation, authorities have seized 80,000 euros in cash and a database containing sensitive information, further dismantling the infrastructure used by the cybercriminals.

Implications and lessons

The arrest of this cybercrime group underscores the continuous threat posed by cybercriminals in our increasingly digitized world. It serves as a reminder of the importance of ongoing efforts to combat cybercrime and protect individuals and businesses from becoming victims. The use of sophisticated phishing, smishing, and vishing tactics highlights the need for increased awareness and vigilance among internet users to prevent falling prey to these scams.

The successful operation conducted by Spanish authorities in arresting the cybercrime group responsible for a multi-million-euro financial fraud is a significant victory in the fight against cybercriminals. The arrests of the group members, including the leader, not only disrupt their illegal activities but also provide justice and a sense of relief to the victims affected by their scams. However, this arrest also serves as a poignant reminder that the battle against cybercrime requires ongoing collaboration, awareness, and stringent measures to protect individuals and businesses from the ever-evolving tactics employed by cybercriminals.

Blockchain TechnologyCryptoInformation Security

Explore more

Digital Transformation Enhances Safety in Port Operations
June 17, 2026

The sheer scale of modern maritime hubs often obscures the daily physical risks faced by the dockworkers who navigate a labyrinth of heavy machinery and moving containers. Historically, these environments have functioned as high-stakes arenas where the margins for error are razor-thin and the consequences of a momentary lapse in judgment are often fatal. Despite the industrial importance of these

Ransomware Attack on Mackay Sugar Halts Australian Harvest
June 17, 2026

The precision required to manage a modern industrial sugar harvest relies on a delicate synchronization of heavy machinery, logistics software, and thousands of workers across North Queensland’s vast agricultural landscape. When this digital backbone was severed by a ransomware attack in June 2026, the consequences resonated far beyond the server rooms of Mackay Sugar, impacting the livelihood of an entire

Did ShinyHunters Really Steal Millions of Kodak Records?
June 17, 2026

The digital underworld erupted with speculation after a prominent cybercriminal organization known as ShinyHunters claimed to have breached the internal databases of the Eastman Kodak Company. This alleged infiltration supposedly resulted in the exfiltration of millions of sensitive records, casting a long shadow over the legacy imaging firm’s modern digital infrastructure and its ability to safeguard corporate assets in an

Attackers Shift Focus From Passwords to OAuth Token Hijacking
June 17, 2026

The digital perimeter has undergone a profound transformation as adversaries abandon the brute-force tactics of yesterday in favor of more sophisticated methods that exploit the very protocols designed to secure our interconnected cloud environments. While many security teams remain preoccupied with complex password policies and rotating credentials, sophisticated threat actors have shifted their attention toward the exploitation of OAuth tokens,

Malicious JetBrains Plugins Steal Thousands of AI API Keys
June 17, 2026

The modern Integrated Development Environment has transformed from a simple text editor into a complex hub of automated intelligence, but this evolution has opened a dangerous new frontier for cybercriminal activity. A massive malware operation recently breached the JetBrains Marketplace, leveraging at least 15 deceptive plugins to harvest sensitive AI API keys from unsuspecting software engineers who rely on these