Alert over the Rise in Identity Fraud Impersonating the Generalitat

In the first half of 2025, there has been a significant increase in attempts to impersonate the Generalitat's identity. In just one year, cases have risen from three to nearly 50 fraud attempts, a situation that has multiplied by 16, putting the Public Administration's cybersecurity department on alert.

Through the Community's ICT Security Centre, the Generalitat has warned about the alarming rise in fraud attempts by impersonating the administration's identity. This fraud aims to "obtain confidential information or divert financial transfers through emails."

The Director General of Information and Communication Technologies (DGTIC), Javier Balfagón, has expressed concern over a situation that already grew during 2024, increasing from three cases in the first half to 14 by the end of the year. Among the most affected are the Valencian Housing and Land Entity (EVHA), Turisme Comunitat Valenciana, and several hospitals, among others.

As a result, the cybersecurity centre has issued a series of recommendations to its service providers to protect against these attempts. Cybercriminals use fraudulent emails that appear official to contact the Generalitat's partner companies, requesting improper payments and diverting financial transfers, as well as obtaining confidential information.

Among the recommendations from CSIRT-CV to service providers or partners is the insistence that official communications always be conducted through institutional channels and domains, verifying the sender before taking any action. Additionally, if there is doubt, one should contact the organisation directly through different means to verify the information.

Furthermore, it is reminded that caution is necessary when dealing with contracts, invoicing, information requests, changes in domiciliation or accounts, and to report suspicious emails or communications to the cybersecurity department. If a fraud is believed to have occurred, it should be reported to the State Security Forces and a complaint filed, as well as notifying colleagues of the receipt of such messages.