The Tax Agency warns of various attempts at fraud (phishing) via technological channels:
Attempts at deceipt make reference to supposed tax refunds through mass e-mailings which misappropriate either the identity and image of the Tax Agency or the identities of its directors. Fraud attempts often refer to alleged information that prevents the tax refund payment from being sent while supplanting the image of the Tax Agency.
These fraudulent mailings, known as “phishing”, refer to a non-existent tax refund benefiting the receiver of the e-mail. In order to receive the money, the taxpayer has to access an address website or complete a form providing details of their bank accounts and credit cards.
The Tax Agency reminds users that the best measure is precaution in response to any suspicious communications which include requests for bank details.
The Tax Agency insists that:
The real domains of the Tax Agency are: www.aeat.es, www.agenciatributaria.es and www.agenciatributaria.com. Access to the Electronic Office must be made through the domains: www.agenciatributaria.gob.es, www1.agenciatributaria.gob.es, www2.agenciatributaria.gob.es, www4.agenciatributaria.gob.es, www5.agenciatributaria.gob.es, www6.agenciatributaria.gob.es, www7.agenciatributaria.gob.es, www9.agenciatributaria.gob.es, www1.aeat.es, www2.aeat.es, www3.aeat.es, www4.aeat.es, www5.aeat.es and aeat.es.
On the other hand, the Tax Agency expressly forbids the creation of frames and the use by third parties of any other means that alter the design, original configuration or contents of any of the domains described in this Security Notice.
The sending to taxpayers has been detected of text messages (SMS) by telephone attention and information companies, which redirect the calls to the Tax Agency and charge for them according to their tariff scale, to request services such as the request for the draft Income Tax return and its confirmation.
The Tax Agency reminds users that the telephone numbers for basic tax information and other telephone services are those which appear in its web portal www.agenciatributaria.es and those which can be accessed from the following link:
It has been detected that certain telephone numbers offer the possibility of arranging prior appointments for drafting tax returns or modifying drafts in offices of the Tax Agency.
The Tax Agency wishes to announce that these telephone numbers are totally unrelated to it and that, in addition to entailing high tariff costs for the users, any appointments obtained via these numbers may not be valid and therefore will not be attended.
A prior appointment can also be arranged, for free, via Internet, at www.agenciatributaria.es
It has been detected that in certain markets of Android apps for mobile phones certain applications are available which use the image of the Tax Agency, offering services in its name.
The Tax Agency wishes to announce that applications for mobile phones created by the Tax Agency are exclusively available for free download in AppStore and Google Play.
These frauds are often detected thanks to the collaboration of internet users who contact the Tax Agency information services, which in turn takes immediate action to prosecute the offenders.
If you have any doubt about the authenticity of any e-mail or website, SMS's received or prior appointment services or similar which claim to be sent by or the property of the Tax Agency, please contact us at the Call Centre of the Tax IT Department (901 200 347 o 91 757 57 77 o 93 442 27 64) to verify their authenticity.
The Tax Agency thanks the public for its collaboration in reporting this type of activities.
Fraud attempts may take the form of mass emails purporting to come from the Tax Agency and imitating its image.
These emails usually offer a tax refund which does not actually exist. In order to receive the money, the recipient has to go to a website where they are asked to give their bank account and credit card details. Do not click on any links or attached files that come from a suspicious email.
The Tax Agency never emails taxpayers to ask for confidential financial or personal information, or bank account or credit card details.
For maximum security, always type the address of the Tax Agency website into the browser, rather than clicking on a link.
And especially, before logging into the e-Office, check the site security certificate.