Overview

• Guardia Civil reports SIM‑swap thefts in which victims lose mobile service as criminals receive verification codes and trigger unauthorized bank charges.
• Mossos d'Esquadra flag a Lidl‑branded smishing campaign that links to a fake site to harvest personal and banking data, with Catalonia’s cybersecurity agency urging users to verify senders and avoid clicking untrusted links.
• Criminologist María Aperador details calls from fraudsters posing as a personal bank manager offering a loan or a “simulation” to extract DNI, address, account numbers and even passwords, seen among CaixaBank, Santander and BBVA customers.
• CaixaBank advises customers to distrust any call requesting data or payments even if the number looks legitimate, to never share information by phone, and to notify the bank and file a police report if fraud is suspected.
• Experts highlight phishing messages that deploy urgency or prize language such as “urgente,” “premio,” “dinero” or “sorteo,” often leading to convincing fake banking pages where credentials and codes are captured.