AADE-Phishing: A New Threat for Residents in Greece
A new wave of SMS fraud is targeting residents in Greece, and expats are among the most vulnerable. The Hellenic Police (ELAS) has issued a public warning about a phishing campaign that impersonates the Independent Authority for Public Revenue (AADE), the agency responsible for tax administration in Greece. The messages claim recipients are entitled to a heating allowance and direct them to a fraudulent website designed to steal personal and financial data.
For anyone unfamiliar with how Greek authorities actually communicate, these messages can appear convincing. Understanding the mechanics of this scam and how to recognize similar attacks is essential for protecting yourself in an increasingly digital Greek administrative landscape.
How the Scam Works
The attack follows a pattern that has become disturbingly common across Europe, adapted specifically for the Greek context. It begins with an unsolicited SMS that appears to come from a legitimate government source. The message informs the recipient that a heating allowance has been approved in their name and provides a link to "claim" the funds.
The link leads to a website that closely mimics the official AADE portal. The page asks visitors to enter sensitive information, including their AFM (tax identification number), Taxisnet credentials, bank account details, and in some cases, credit card numbers. Once submitted, this data is captured by the attackers and used for identity theft, unauthorized transactions, or resale on dark web marketplaces.
What makes this particular campaign effective is its timing and specificity. The heating allowance (epidoma thermansis) is a real government program that provides financial assistance during winter months. By referencing a legitimate benefit, the scammers exploit existing awareness and create a sense of urgency that overrides caution.
Why Expats Are Particularly Vulnerable
Expats and recent arrivals in Greece face a higher risk from these attacks for several interconnected reasons. Many are still learning how Greek bureaucracy operates and may not know which communication channels are legitimate. The uncertainty of navigating a foreign administrative system creates exactly the kind of anxiety that phishing campaigns are designed to exploit.
Additionally, expats who recently obtained their AFM or registered for Taxisnet may expect follow-up communications from tax authorities. A fraudulent SMS arriving during this period can feel like a natural part of the onboarding process rather than an obvious attack.
Language barriers compound the problem. While the fraudulent messages are typically in Greek, the underlying psychological manipulation, creating urgency and mimicking authority, works regardless of language proficiency. Non-Greek speakers may be more likely to click a link first and evaluate its legitimacy second, simply because they cannot quickly parse the linguistic cues that might alert a native speaker.
How to Identify and Avoid SMS Fraud
Protecting yourself from phishing attacks does not require technical expertise. It requires a consistent set of habits that apply to every unsolicited message you receive, not just the ones that look suspicious.
| Red Flag | What to Check | Legitimate Alternative |
| Unsolicited SMS with a link | Greek authorities send notifications through Taxisnet or registered mail, not SMS links | Log in directly to gov.gr or Taxisnet |
| Request for personal data | No government agency asks for AFM, passwords, or bank details via text | Visit your local tax office (DOY) in person |
| Urgency language ("act now," "expires today") | Real government deadlines are communicated weeks in advance through official channels | Check AADE announcements at aade.gr |
| URL that doesn't match official domains | Official sites use .gov.gr or .gsis.gr domains | Type the official URL directly in your browser |
| Sender number looks generic or unfamiliar | Government SMS typically comes from named senders, not random numbers | Call the official AADE helpline to verify |
Beyond recognizing individual red flags, the most effective defense is a simple behavioral rule: never interact with links in unsolicited messages. If a message claims to be from a government agency, close it and navigate directly to the official website using a URL you have verified independently. This single habit eliminates the vast majority of phishing risk.
If you receive a suspicious message, report it to the Hellenic Police cybercrime division (the "Diwxi Ilektronikwn Egklimaton") through their online portal or by calling 11188. Reporting helps authorities track and disrupt active campaigns before they reach more victims.
The Broader Pattern
This heating allowance scam is not an isolated incident. It is part of a broader trend of increasingly sophisticated phishing campaigns targeting residents in Greece. Previous waves have impersonated banks, courier services, utility companies, and even the Greek Post Office (ELTA). The tactics evolve, but the underlying mechanism remains the same: exploit trust, create urgency, and harvest data.
For expats building their lives in Greece, digital literacy around government communications is as important as understanding the bureaucratic processes themselves. Knowing how the Greek state actually communicates, through Taxisnet notifications, registered mail, and official portal announcements, is the most reliable way to distinguish real messages from fraudulent ones.
Ellytic supports expats through the legitimate administrative processes that scammers attempt to exploit. From AFM registration and Taxisnet activation to certified translations of official documents, having your bureaucratic foundations properly established reduces confusion and makes you less susceptible to social engineering attacks that prey on uncertainty.
Stay Safe from SMS Scams—Get Bureaucracy Done Right
Fraudsters exploit confusion around Greek tax and government processes—Ellytic helps expats handle AFM, Taxisnet, and tax residency changes securely and correctly, without risky links or guesswork. Experience it yourself:
Get StartedNeed help with your AFM?
Ellytic streamlines Greek Tax ID registration, certified translations, and essential documents.
Info:This article is for informational purposes only and does not constitute legal advice.
About the Author
Lazaros • Founder & Greek Market Expert
I build digital pathways through Greek bureaucracy — for people who move, buy, inherit, hire, or run operations on the ground. Designed for clarity, speed and legal certainty. Ellytic exists because the system should finally work.