The “Internet Fraudsters Arrested” email is a fake compensation scam, not a real notice from Spanish police, the Supreme Court of Spain, or any government compensation program. The message claims that online fraudsters who previously scammed you have been arrested and that you can receive about €2,000,000 if you contact a “barrister” or legal representative. That promise is the bait: the next step is usually a request for personal documents, banking details, passwords, or a bogus processing fee.
If this email is in your inbox, do not reply, do not send ID documents, and do not pay any release, tax, court, transfer, or verification fee. If you already answered, secure your email and bank accounts first, then report the message and scan the device if you opened links or attachments.
What the “Internet Fraudsters Arrested” email claims
The common version arrives with a subject similar to “From the Crime Fraud Investigation Department Spain.” It says a supposed detective, judge, police unit, or court representative has identified you as a victim of a previous fraud case. The email then claims that the Spanish government has approved a large compensation payment, often written as €2,000,000 or “Two Million Euros.”
Scammers use this story because it targets people who may already be worried about a previous fraud loss. Instead of threatening you, the email creates relief and hope: it says the criminals were caught, the court ruled in your favor, and you only need to contact the named representative to release the funds.
Why this message is fake
The message is fake because it asks you to trust a private contact inside an unsolicited email instead of verifying the case through official channels. Real courts, police, and government agencies do not randomly award large compensation by telling victims to contact a Gmail, Outlook, or lookalike-domain address.
Current fraud data also explains why this lure keeps appearing. The FTC said consumers reported more than $12.5 billion in fraud losses in 2024, with imposter scams accounting for $2.95 billion of reported losses. The FBI’s 2024 IC3 reporting also placed phishing/spoofing among the most common internet-crime complaints. A message that combines government impersonation, fake restitution, and email phishing sits directly in that risk zone.
Red flags in the email
- Unexpected compensation: you did not file a verified claim, but the email says a huge payment is waiting.
- Fake authority language: it references Spanish police, courts, judges, or cybercrime departments without a verifiable case path.
- Private contact details: the “barrister” or officer uses free email, a throwaway domain, or a reply-to address unrelated to an official site.
- Pressure to reply privately: the message asks you to keep the matter confidential or contact only the person named in the email.
- Requests for documents or money: later replies may ask for passport scans, bank details, card numbers, crypto, wire transfers, gift cards, or “processing” fees.
- Bad legal logic: a court judgment, victim compensation, and international transfer are compressed into a casual email with no secure portal or verified case record.
How to verify a Spanish authority-themed email
Do not verify the message by replying to it. Open a fresh browser tab and search for the official website of the organization named in the message. The official Supreme Court of Spain is represented through the Poder Judicial/CGPJ website, and Spain’s INCIBE provides citizen fraud-reporting guidance for phishing, fraudulent websites, and malware-related incidents. If the email claims to be from police or a court, use a public official contact route from the real website, not a phone number or email address printed in the suspicious message.
For a quick email check, compare the full sender address, reply-to address, return path, links, attachment names, and the domain shown after the @ sign. If the message says “Spanish government” but routes you to a free mailbox, shortened link, unrelated domain, or a page that asks for banking details, treat it as phishing.
What scammers want from victims
This scam usually leads to one of three outcomes. First, the attacker asks for personal information such as full name, address, date of birth, passport scan, driver’s license image, or tax number. Second, the attacker asks for financial information, including bank account details or card data. Third, the attacker demands an advance fee, often described as a legal fee, release charge, transfer tax, anti-fraud certificate, courier fee, or currency-conversion cost.
That makes “Internet Fraudsters Arrested” a recovery-style advance-fee scam. The fake payout is not the product; the victim’s money and identity documents are.
Sample wording seen in this scam
Variants change, but the core text is recognizable. Treat messages with wording like this as suspicious:
Subject: From the Crime Fraud Investigation Department Spain
Be informed that the internet fraudsters who defraud you have been arrested
and charged to court. The court has ordered the Spanish Government to pay
you compensation and damages for all the money you lose to those fraudsters.
The sum of €2,000,000 has been approved to compensate you. Contact Barrister
George Hernández immediately to claim your compensation fund.
Other variants may mention a Spanish court notice, cybercrime victim compensation, a police case reference, a court ruling date, a “Crown Attorney,” or a deadline for claiming the funds. Those details are meant to make the message feel official, but they do not prove it is real.
If you only received the email
- Do not reply and do not click links or open attachments.
- Mark the message as phishing or spam in your email client.
- Block the sender after reporting it to the mail provider.
- If the message contains a suspicious link, check the domain with the Gridinsoft Website Reputation Checker before visiting it.
- Warn relatives or coworkers if the email was sent to a shared mailbox or if similar messages are spreading in your organization.
If you already replied or sent information
- Stop communication now. Do not argue with the sender or try to “prove” they are fake.
- Secure your email account. Change the password, enable multi-factor authentication, review forwarding rules, and sign out of unknown sessions.
- Call your bank or card issuer if you sent payment details, paid a fee, shared card data, or gave the scammer enough information to attempt account recovery.
- Protect your identity if you sent ID documents. Consider a fraud alert, credit freeze, or local equivalent where available.
- Report the incident to your local cybercrime/fraud portal. U.S. victims can report to the FTC and IC3; victims in Spain can use INCIBE’s fraud-reporting guidance.
- Scan the device if you opened a file or visited a page from the email. A follow-up phishing page can deliver malware or browser notification spam. Gridinsoft Anti-Malware can help check the device for malicious files and unwanted changes.
For broader recovery steps after any scam payment or data exposure, see our guide on what to do when you get scammed.
How this differs from a real fraud recovery notice
A real fraud recovery process starts from a case you can verify independently: a police report, court case, official victim-services contact, bank investigation, or public agency portal. A real process will not ask you to send sensitive documents to a random private email address, pay a surprise fee by irreversible methods, or keep the entire matter secret from your bank, family, or local authorities.
If you were previously scammed, be extra cautious with any message that says your lost money has been found. Scammers often recycle victim lists and target the same people again with “refund,” “recovery,” “lawyer,” “court,” and “compensation” stories.
Related scam patterns
- Crypto recovery scams use the same false-hope mechanism after cryptocurrency theft.
- Phishing emails often hide fake sender domains behind convincing display names.
- Online scam red flags help explain why surprise money, urgency, secrecy, and odd payment methods are dangerous together.
- Fake banking notifications use similar urgency and identity-verification pressure.
FAQ
Is the “Internet Fraudsters Arrested” email real?
No. It is a phishing and advance-fee scam. The message falsely claims that Spanish authorities arrested fraudsters and approved a large compensation payment for you.
Could a government really compensate scam victims?
Victim compensation and restitution can exist in real legal processes, but you would verify them through official case channels. A surprise email from a private “barrister” promising €2,000,000 is not a real compensation process.
Why did I receive this email?
It may have been sent in bulk to leaked or scraped email addresses. If you were previously scammed, your address may also be on a victim list that scammers reuse for recovery-style fraud.
What if I sent my passport or bank details?
Contact your bank immediately, secure your email account, monitor accounts for suspicious activity, and report the incident to your local fraud or cybercrime authority. If you sent identity documents, consider identity-theft protection steps such as a fraud alert or credit freeze where available.
Should I click the links to check whether the email is real?
No. Verify outside the email. Open the official website manually or use a trusted domain-checking tool before visiting any suspicious link.
References
- Federal Trade Commission. “New FTC Data Show a Big Jump in Reported Losses to Fraud to $12.5 Billion in 2024.” FTC, March 10, 2025, accessed June 7, 2026. https://www.ftc.gov/node/87602
- Federal Bureau of Investigation. “FBI Releases Annual Internet Crime Report.” FBI, April 23, 2025, accessed June 7, 2026. https://www.fbi.gov/news/press-releases/fbi-releases-annual-internet-crime-report
- INCIBE. “Reporte de fraude.” Instituto Nacional de Ciberseguridad, accessed June 7, 2026. https://www.incibe.es/ciudadania/ayuda/reporte-de-fraude
- Consejo General del Poder Judicial. “Tribunal Supremo.” Poder Judicial España, accessed June 7, 2026. https://www.poderjudicial.es/cgpj/es/Poder-Judicial/Tribunal-Supremo
