Spanish National Police, supported by Europol, have arrested 34 individuals suspected of belonging to the Nigerian criminal organization “Black Axe.” The operation targeted a sophisticated network allegedly responsible for laundering over €5.9 million generated through cyber-enabled fraud schemes.
Authorities conducted the operation across multiple Spanish provinces, dismantling a cell that specialized in Business Email Compromise (BEC) and other online scams. This enforcement action highlights the continued intersection of traditional organized crime and digital financial theft.
Coordinated Law Enforcement Action
The investigation, which culminated in early January 2026, involved simultaneous raids in Madrid, Barcelona, Malaga, and other locations. Law enforcement officers searched 19 residences, seizing significant evidence of criminal activity.
Key seizures during the raids included:
Electronic devices including smartphones and laptops
Forged identification documents
Financial records linking suspects to money mule networks
Luxury assets purchased with illicit funds
Europol deployed specialists to Spain to assist with cross-checking data and extracting forensic evidence from seized devices in real-time. This collaboration allowed authorities to map the financial flows and identify the hierarchy of the local cell.
Cyber-Enabled Fraud Tactics
The dismantled network primarily utilized low-tech but high-yield social engineering attacks to generate revenue. Investigators identified Business Email Compromise (BEC) and “CEO fraud” as primary revenue streams.
In these attacks, perpetrators compromised corporate email accounts to intercept legitimate invoices. They then altered payment details to redirect funds into bank accounts controlled by the syndicate. The group also engaged in romance scams, targeting vulnerable individuals to solicit large transfers of money.
To obfuscate the origin of the stolen funds, the group employed a vast network of “money mules.” These individuals received the stolen funds into personal bank accounts before transferring them to other accounts controlled by the organization, often located outside of Europe.
Ongoing Investigation
Spanish authorities have charged the 34 suspects with fraud, money laundering, and membership in a criminal organization. The investigation remains active, with Europol analyzing the seized data to identify further links to the Black Axe leadership structure operating internationally.
