Accelerated by:
Certifications:
Light Eyes is part of Apolo Cybersecurity
ENG
ENG
%402x.svg){kind=icon}
.webp)
This week has been marked by increasingly sophisticated phishing attacks, attempts to intrude on high-impact digital services, and threats that come from both organized actors and unexpected profiles. From massive campaigns that impersonate the DGT and BBVA to steal credentials, to a possible cyberattack on Barça's ticket app, the picture makes it clear that users are still the attackers' favorite target.
Added to this is the offensive of a pro-Russian group against public transport in Mallorca and the case of a 17-year-old who managed to launch a cyberattack thanks to AI tools, demonstrating how the technical barrier of cybercrime is crumbling. This week's incidents don't just expose technical vulnerabilities: they highlight an ecosystem where social engineering, automation and attacks on public infrastructure coexist to jeopardize digital security.
The message is clear: organizations must reinforce their vigilance, train their users and review the strength of every link, from the customer's mobile phone to the critical platforms that support large scale services.
Thousands of users have received emails that pretend to be official notifications from the DGT. The message states that there is a pending fine and invites the user to check the details through a link. The problem is that this link leads to a fraudulent website designed to capture personal and banking information. Although the appearance of the email is convincing, the DGT does not use email as a means of notifying sanctions, which makes this campaign a very dangerous trap for those who are unaware of this detail.
Over the past few days, FC Barcelona users have reported bugs, abnormal accesses and repeated errors in the official ticket management application. Although the club has not yet confirmed an attack, the pattern points to an attempted intrusion that could have compromised personal data or access to locations. The incident brings back to the table the need to reinforce high-demand systems and protect platforms that manage sensitive information from thousands of fans.
A wave of fraudulent SMS is affecting BBVA customers. The messages alert of account blockages and redirect to a page practically identical to real online banking. When entering their data, many victims unknowingly hand over their credentials and verification codes, allowing attackers to access their accounts and operate in a matter of minutes. The campaign is especially dangerous because of the quality of the message and because of the use of emotional urgency, a classic but effective tactic.
A student has been arrested after executing a cyberattack using artificial intelligence tools that automated part of the process. This case reflects a worrying trend: technical knowledge is no longer a barrier. AI allows inexperienced people to generate scripts, instructions and tools that previously required advanced training. The result is a notable increase in the number of attacks, the speed with which they are executed, and the difficulty in tracing their real origin.
The pro-Russian group NoName057 (16) has claimed responsibility for an attack on public transport in Mallorca, causing interruptions and the fall of online services. This type of offensive is usually directed against civilian infrastructure as part of destabilization strategies, and its impact goes beyond the technical aspect: it affects the perception of security and jeopardizes public trust in essential services. Spain continues to be a recurring objective in the current context of international tensions.
This week's incidents highlight a scenario in which traditional social engineering, attacks on critical infrastructure and the arrival of a new attacker profile supported by AI tools coexist. Protecting yourself is no longer just a matter of technology: it's a combination of training, processes, audits and constant monitoring.
In Apolo Cybersecurity, we help companies detect vulnerabilities, anticipate attacks and strengthen both their systems and the preparation of their teams. If you want to ensure that your organization is ready to face this new landscape, we're here to help.