In recent weeks, students at several Spanish universities have encountered a new scam scheme. They receive emails that outwardly appear to be official notifications from their institutions. The messages claim there is an overdue tuition payment of 850 euros and demand urgent transfer of funds to a specified bank account.
These emails have been particularly prevalent, allegedly sent on behalf of Esade, Deusto, and Pontificia Comillas universities. The emails used university logos and addresses similar to the official ones, making the fraud harder to detect. For example, in Esade’s case, the scammers used an address resembling the real one, but not affiliated with the university system.
University administrations responded promptly to the situation. Students were sent warnings explaining that such emails have no connection to the university, and all payment-related matters are handled solely through official platforms and internal university systems. Deusto University reminded students that no financial transactions are carried out through third-party email addresses. Pontificia Comillas posted information about the scam on its social media, stressing the importance of using only official payment channels.
Experts note that such schemes are not new to Spain. Scammers often exploit students’ trust and create a sense of urgency to force victims to act without verifying the information. In recent years, cases of phishing targeting students have increased, with perpetrators improving their methods to impersonate official entities.
To protect against such attacks, specialists advise carefully checking the sender’s address, especially the domain following the ‘@’ symbol. Even minor differences may indicate a forgery. It is not recommended to follow links from suspicious emails or to enter personal or banking information on third-party websites. It is also important not to download attachments from suspicious messages, as they may contain malware.
Universities emphasize that all financial matters are handled only through official websites and internal systems. If students have doubts, they are advised to contact the administration directly or check the information on the university’s official portal.
If a student does fall victim to fraud, it is essential to keep all evidence — emails, correspondence, transaction details — and contact the police or the Guardia Civil. Prompt reporting can help prevent the further spread of the scheme and protect other students.
Overall, the situation highlights the importance of digital literacy and vigilance when handling email, especially regarding finances and personal data. Universities in Spain continue to update students on new threats and urge them not to panic if they receive such messages.
