Skip to main content

Online: false websites and phishing

In fraudulent mailings, known as“phishing”,It usually refers to a non-existent tax refund in which the person receiving the email benefits. In order to receive the money, the recipient has to go to a website where they are asked to give their bank account and credit card details.

The aim of the criminals is to steal the victim's personal or banking data, either by sending them to a fake website that impersonates the Tax Agency or by making them download files containing viruses.

Always keep in mind that any Tax Agency procedure that involves a payment will be carried out through the AEAT website and under secure e-commerce conditions.

The term “AEAT website” refers to the website of the Tax Agency and is composed of:

  • Electronic headquarters of the AEAT , made up of the domains: “sede.agenciatributaria.gob.es” and “*.agenciatributaria.gob.es”.

  • Other domains used by the AEAT: “*.agenciatributaria.es” and “*.aeat.es”.

Furthermore, the Tax Agency expressly prohibits the use of "framing" or any other mechanisms by third parties that alter the design, original configuration or content of any of the domains described in this Security Notice.