A new wave of fraudulent SMS messages posing as Greece’s social security agency e-EFKA is targeting users in an attempt to extract sensitive personal and banking information, including IBAN numbers and insurance details.

The scam messages are being sent widely to both insured individuals and non-beneficiaries, appearing as if they originate from e-EFKA. Recipients are urged to “update their details” through a link provided in the message, with threats that their health insurance card may be deactivated if they fail to comply.

How the scam works

The fraudulent SMS directs users to click on a link and submit personal information such as bank account details, insurance registry data and other sensitive credentials. The goal is to obtain consent or access that can later be used for financial theft or identity fraud.

According to reports, the message is designed to appear official, increasing the likelihood that recipients will trust it and follow the instructions.

NEWSLETTER TABLE TALK

Never miss a story.
Subscribe now.

The most important news & topics every week in your inbox.

Authorities warn of phishing attempt

Cybersecurity experts identify this type of attack as phishing or spoofing, techniques used to impersonate legitimate organisations in order to deceive users into revealing confidential data.

Authorities stress that official agencies do not request sensitive information such as IBAN numbers or personal credentials via SMS links.