Sixteen Civil Guard officers and agents carried out a major operation against a criminal group involved in online fraud and identity theft. The group, linked to the Parepal Mullers network, was accused of defrauding more than six million euros through a sophisticated scheme. Authorities reported that 11 properties in Marbella and Malaga were linked to the case, highlighting the breadth of the illicit activity across multiple locations in the province and beyond.
According to a formal statement from the Civil Guard, investigators have resolved at least 100 crimes across the national territory and identified 30 additional cases in several EU member states. The evidence recovered during arrests included a large collection of electronic devices, financial instruments, and documentation that detailed the organization’s fraudulent operations and money flows.
During searches, agents recovered 70 mobile devices, one tablet, six laptops, one desktop computer, a color printer, 85 SIM cards from different providers, and material used to forge contracts. Bank records, agendas noting victim accounts, and numerous credit cards were found, along with thousands of euros in cash and several luxury watches, all of which pointed to an organized criminal operation with a clear scheme for fraud and money laundering.
The investigation began after a report to the Alcalá la Real Civil Guard headquarters in Jaén, alleging that a company had been defrauded through a classic “Man in the Middle” tactic. Fraudsters intercepted communications between two companies and manipulated invoice details to redirect payments to fraudulent accounts.
As the case developed, investigators traced the payment redirection and identified the owner of the compromised account. It emerged that the suspects opened thirteen accounts using their own names at various banks, all within the province of Malaga, a strategy designed to hide the paper trail and complicate tracing efforts.
Further inquiries revealed ten additional victims of identity theft who had their personal details used to open another 47 bank accounts, elevating the total to 60 accounts controlled by the organization. Accounts were opened in Malaga branch offices by operatives assigned to this task, sometimes using victims’ lost or stolen documents, with each new account yielding a financial injection for the criminals.
Investigators determined that the group channeled more than two million euros through these accounts, with substantial portions transferred abroad and among national accounts. A second level within the organization managed the internal transfers, while a third level oversaw cash withdrawals from ATMs, and a fourth group conducted the defense against detection by blocking compromised bank accounts when necessary.
Comprehensive account analyses indicated that the organization had committed fraud exceeding six million euros. The proceeds were laundered by establishing business ties with Spanish and foreign suppliers, enabling the shipment of goods to Nigeria after purchase, creating a complex web of economic activity to disguise the illicit origin of funds.
Those detained were charged with ongoing computer fraud, participation in a criminal organization, document forgery, usurpation of identity, and money laundering. The Civil Guard continues to review seized documents that may reveal additional crimes and lead to further arrests.
This operation, alongside the formation of specialized cybercrime teams, reflects the Civil Guard’s commitment to counter the rising tide of crimes conducted through information and communication technologies. The aim is to strengthen national and international capabilities for cybercrime investigation and prosecution, adapting to evolving criminal methods online and across borders.
To prevent similar frauds, the Civil Guard advised companies to pre-validate account numbers used in commercial dealings and to establish an alternate contact method beyond email to verify any account changes. They recommended robust password practices, encrypted communications for sensitive files, and ongoing cybersecurity training for employees to reduce exposure to social engineering and other online threats.