The National Cybersecurity Institute (INCIBE) has issued a warning about a new phishing scam impersonating the Spanish National Police. The scheme seeks to distribute malware through fraudulent emails claiming to be an official summons regarding the recipient's legal records.
The fraudulent emails claim to be official notifications from the National Police, urging recipients to address an alleged issue with their legal records.
The emails often include subject lines such as “Official Notification: File 255XXXXXX” and appear to originate from a spoofed domain resembling “@policia.es.” Recipients are directed to download attached files or click on links that contain malicious software designed to infect their devices.
Common signs of the scam include:
What to Do if You Receive the Email
If you receive an email matching this description, but you haven’t clicked the link or downloaded the file:
1. Report It: Forward the email to the official cyber incident reporting mailbox.
2. Block the Sender: Mark the sender as spam or block them in your email client.
3. Delete the Email: Remove it from your inbox and trash folder.
If you clicked the link or downloaded the file but haven’t executed it:
1. Delete the File: Remove it from your downloads folder and clear your recycle bin.
If you executed the malicious file:
1. Disconnect from the Network: Immediately disconnect the infected device from your Wi-Fi or LAN to prevent the malware from spreading.
2. Run a Virus Scan: Ensure your antivirus software is up-to-date and run a full system scan.
3. Consider Factory Reset: If the malware persists, reset the device to factory settings. Back up your data regularly to minimize data loss.
4. Document Evidence: Take screenshots of the email and any associated files. These can be used as evidence when filing a report with the authorities.
Protecting Yourself from Cyber Threats
To verify the authenticity of communications from the National Police, consult their official website or contact their cybersecurity hotline at 017, where INCIBE experts provide guidance.
This incident serves as a reminder to remain vigilant against phishing scams, which continue to exploit trust in official institutions. Always verify suspicious communications before taking any action that could compromise your digital security.
