How to File a Cyber Fraud and Online Scamming Complaint in the Philippines

I. Introduction

Cyber fraud and online scamming have become among the most common technology-related offenses in the Philippines. These schemes may involve fake online sellers, investment scams, phishing links, identity theft, unauthorized bank transfers, e-wallet fraud, romance scams, job scams, marketplace scams, cryptocurrency-related schemes, business email compromise, SIM-based fraud, and fraudulent use of financial accounts.

In the Philippine legal context, victims are not limited to filing a single “cybercrime complaint.” Depending on the facts, a victim may pursue criminal, regulatory, civil, banking, consumer-protection, data-privacy, and platform-based remedies. The correct approach is often to preserve evidence immediately, report the incident to the relevant platform or financial institution, and file a formal complaint with law-enforcement or prosecutorial authorities.

This article discusses the legal bases, competent agencies, evidence requirements, procedure, remedies, and practical considerations for filing a cyber fraud or online scamming complaint in the Philippines.

II. What Counts as Cyber Fraud or Online Scamming?

“Cyber fraud” is a broad practical term, not always a single offense label. It generally refers to fraud committed through or facilitated by information and communications technology. “Online scamming” may involve deception, misrepresentation, impersonation, unauthorized access, or the fraudulent use of electronic accounts, devices, networks, or payment systems.

Common examples include:

  1. Fake online selling A seller offers goods through social media, marketplace platforms, messaging apps, or websites, receives payment, and fails to deliver the item.

  2. Phishing and credential theft A victim is tricked into entering usernames, passwords, OTPs, card details, or banking credentials into a fake website, app, form, or message thread.

  3. Unauthorized bank or e-wallet transactions Funds are transferred without the account owner’s authorization, often after phishing, SIM-swap fraud, malware, or social engineering.

  4. Investment scams A person or entity promises high returns, guaranteed profits, cryptocurrency gains, forex trading income, or “task-based” earnings, but the scheme is fraudulent or unregistered.

  5. Romance scams and confidence scams The scammer builds trust online and later solicits money under false pretenses.

  6. Job, recruitment, and work-from-home scams Victims are asked to pay placement fees, processing fees, training fees, or deposits for fake employment opportunities.

  7. Business email compromise A scammer impersonates a company officer, supplier, lawyer, or client to redirect payment to a fraudulent account.

  8. Identity theft and impersonation The scammer uses another person’s name, photo, account, or personal data to deceive others.

  9. Account takeover A victim’s email, social media, banking, marketplace, or e-wallet account is accessed or controlled without authority.

  10. Use of mule accounts Fraud proceeds are received, transferred, or withdrawn through bank, e-wallet, or crypto accounts controlled by another person.

The legal classification depends on the conduct, the evidence, the platform used, the amount involved, and the identity or location of the suspect.

III. Main Philippine Laws That May Apply

Several Philippine laws may apply to cyber fraud and online scams.

A. Cybercrime Prevention Act of 2012

Republic Act No. 10175, known as the Cybercrime Prevention Act of 2012, is the principal Philippine law addressing crimes committed through computer systems or information and communications technology.

Relevant offenses may include:

  1. Computer-related fraud Fraud committed through unauthorized input, alteration, deletion, or suppression of computer data or interference with a computer system, resulting in economic or possessory damage.

  2. Computer-related identity theft Unauthorized acquisition, use, misuse, transfer, possession, alteration, or deletion of identifying information belonging to another person.

  3. Illegal access Accessing a computer system without authority.

  4. Data interference or system interference Unauthorized alteration, damaging, deletion, deterioration, or suppression of computer data, or interference with the functioning of a computer system.

  5. Cyber-squatting, misuse of devices, and other cyber-related offenses These may apply in specific factual settings.

The Cybercrime Prevention Act also treats certain offenses under the Revised Penal Code and special laws as cybercrimes when committed through information and communications technology.

B. Revised Penal Code

The Revised Penal Code may apply when the scam involves traditional crimes committed through online means.

Relevant offenses may include:

  1. Estafa or swindling Often relevant in fake selling, investment scams, false pretenses, and deceitful inducement to part with money or property.

  2. Other deceits May apply to lesser forms of fraudulent conduct.

  3. Falsification May apply if forged documents, fake IDs, false receipts, altered screenshots, or fraudulent records are used.

  4. Usurpation of authority or official functions May apply when a person impersonates a public officer or claims official authority.

  5. Threats, coercions, libel, or unjust vexation These may arise in related conduct, especially when scammers harass, threaten, or blackmail victims.

If estafa is committed through ICT, it may be prosecuted as a cybercrime-related offense, potentially affecting penalties and investigative tools.

C. Anti-Financial Account Scamming Act

The Anti-Financial Account Scamming Act is highly relevant to modern fraud involving bank accounts, e-wallets, payment platforms, and other financial accounts. It targets schemes involving financial account fraud, social engineering, phishing, money mules, and the unauthorized use or transfer of financial account credentials.

This law is especially important where scammers use financial accounts to receive, transfer, layer, or withdraw scam proceeds.

D. Electronic Commerce Act

Republic Act No. 8792, the Electronic Commerce Act, recognizes electronic documents, electronic signatures, and electronic data messages. It is relevant because many cyber fraud cases rely on screenshots, emails, chat messages, digital receipts, transaction records, logs, and other electronic evidence.

E. Data Privacy Act of 2012

Republic Act No. 10173, the Data Privacy Act, may apply when personal information is unlawfully collected, used, shared, sold, disclosed, or processed. It may be relevant in phishing, identity theft, doxxing, account takeover, unauthorized use of personal data, or data breaches.

Complaints involving misuse of personal information may be brought before or reported to the National Privacy Commission, depending on the facts.

F. SIM Registration Act

Republic Act No. 11934, the SIM Registration Act, may be relevant where mobile numbers are used in fraud, OTP interception, text scams, fake identities, or scam messages. Victims may report scam numbers to law enforcement, telecommunications providers, and relevant agencies.

G. Consumer Protection and Financial Regulations

Depending on the scam, the following regulatory bodies may also be relevant:

  1. Bangko Sentral ng Pilipinas For banks, e-wallets, electronic money issuers, payment systems, and financial consumer complaints.

  2. Securities and Exchange Commission For investment scams, unregistered securities, unauthorized solicitation of investments, Ponzi schemes, crypto-investment schemes, and corporate fraud.

  3. Department of Trade and Industry For consumer complaints involving online selling, defective goods, non-delivery, unfair sales practices, and e-commerce transactions involving sellers or merchants.

  4. Insurance Commission For insurance-related scams.

  5. National Telecommunications Commission For issues involving telecommunications services, scam numbers, and related telecom concerns.

IV. Where to File a Cyber Fraud or Online Scamming Complaint

A victim may file or report the incident with one or more of the following, depending on the nature of the case.

A. Philippine National Police Anti-Cybercrime Group

The PNP Anti-Cybercrime Group investigates cybercrime complaints, including online scams, phishing, hacking, identity theft, and other ICT-related crimes.

Victims usually submit a complaint-affidavit and supporting evidence. The PNP may assist in cybercrime investigation, digital evidence handling, coordination with platforms or financial institutions, and case build-up.

B. National Bureau of Investigation Cybercrime Division

The NBI Cybercrime Division also investigates cybercrime offenses. Victims may file a complaint with the NBI, especially where the matter involves complex digital evidence, identity theft, online fraud, or offenders using digital platforms.

C. Department of Justice Office of Cybercrime

The DOJ Office of Cybercrime is the central authority for cybercrime-related matters under the Cybercrime Prevention Act. It performs important coordinating functions, including international cooperation, preservation requests, and cybercrime policy functions.

For many victims, the practical first step remains filing with the PNP, NBI, or prosecutor’s office, but the DOJ Office of Cybercrime may be relevant in preservation, coordination, and cases with cross-border elements.

D. City or Provincial Prosecutor’s Office

A criminal complaint may be filed directly with the Office of the City Prosecutor or Office of the Provincial Prosecutor having jurisdiction. The prosecutor evaluates whether there is probable cause to file the case in court.

A complaint filed with the prosecutor usually requires:

  1. Complaint-affidavit;
  2. Affidavits of witnesses, if any;
  3. Documentary and electronic evidence;
  4. Proof of payment or loss;
  5. Screenshots and communications;
  6. Identification of the respondent, if known;
  7. Certification and authentication of electronic evidence where applicable.

E. Barangay or Small Claims?

Barangay conciliation may be relevant only for certain disputes between individuals residing in the same city or municipality and where the matter is legally subject to barangay conciliation. However, many cyber fraud cases involve criminal conduct, unknown offenders, different localities, or offenses punishable beyond barangay jurisdiction. In those cases, law enforcement or prosecutorial filing is usually more appropriate.

Small claims may be considered when the victim seeks to recover money from an identified person and the claim is civil in nature. However, small claims do not replace criminal prosecution for fraud.

F. Bank, E-Wallet, or Financial Institution

If money was transferred through a bank, e-wallet, remittance center, payment gateway, or card, the victim should immediately report the transaction to the financial institution.

This is urgent because the institution may be able to:

  1. Flag or freeze suspicious activity, subject to law and internal procedures;
  2. Trace transaction references;
  3. Receive a fraud dispute;
  4. Preserve logs and records;
  5. Coordinate with law enforcement;
  6. Request further documents from the victim;
  7. Provide official transaction records.

A delay may make fund recovery more difficult.

G. Online Platform, Marketplace, or Social Media Provider

The victim should also report the scammer’s account, listing, page, group, advertisement, domain, or post to the platform used. Platform reporting can help preserve evidence, suspend fraudulent accounts, prevent further victimization, and support later investigation.

However, platform reporting alone is not the same as filing a criminal complaint.

H. Regulatory Agencies

Depending on the scam, the victim may also report to:

  1. SEC — investment scams, fake corporations, unauthorized investment solicitation;
  2. BSP — banks, e-wallets, payment systems, financial consumer protection;
  3. DTI — online consumer transactions and merchant complaints;
  4. NPC — misuse of personal information, identity theft, data privacy violations;
  5. NTC — scam text messages or telecom-related complaints.

V. Immediate Steps After Discovering the Scam

A victim should act quickly. The first few hours or days may be crucial.

Step 1: Stop Further Communication and Payments

Do not send more money, even if the scammer claims that additional fees are needed for release, tax, processing, verification, delivery, unlocking, withdrawal, or refund. Many scams are designed to extract repeated payments.

Step 2: Secure Accounts

Immediately change passwords for affected accounts, including email, banking, e-wallet, social media, marketplace, and cloud accounts. Enable two-factor authentication where possible. Log out of unknown sessions. Revoke access to suspicious apps or devices.

Step 3: Contact the Bank or E-Wallet Provider

Report the transaction as fraudulent. Provide the date, amount, reference number, recipient account, screenshots, and any communication with the scammer. Ask for an official case or ticket number.

Step 4: Preserve Evidence

Do not delete messages, posts, emails, transaction receipts, call logs, text messages, or app notifications. Take screenshots, but also preserve the original records whenever possible.

Step 5: Report to the Platform

Report the account, page, listing, advertisement, phone number, email, or domain used in the scam. Record the platform report reference number if available.

Step 6: Prepare a Timeline

Write a chronological account of what happened. Include dates, times, names used, accounts contacted, links clicked, amounts sent, and promises made.

Step 7: File a Complaint

File with the PNP Anti-Cybercrime Group, NBI Cybercrime Division, or prosecutor’s office. For investment scams or regulated entities, also report to the relevant regulatory agency.

VI. Evidence Needed for a Cyber Fraud Complaint

Evidence is the backbone of a cyber fraud complaint. A well-prepared complaint usually includes both narrative evidence and documentary or electronic evidence.

A. Complaint-Affidavit

The complaint-affidavit is a sworn statement describing the facts. It should include:

  1. Name, address, and contact details of the complainant;
  2. Description of how the scam began;
  3. Names, aliases, usernames, phone numbers, email addresses, links, pages, or accounts used by the scammer;
  4. The exact misrepresentations made;
  5. The amount paid or property lost;
  6. Dates and times of communications and transactions;
  7. How the complainant relied on the false statements;
  8. What happened after payment;
  9. Efforts made to contact, verify, or recover the money;
  10. A list of attached evidence;
  11. A request for investigation and prosecution.

B. Screenshots of Conversations

Include screenshots of chats, emails, text messages, posts, comments, order confirmations, invoices, payment instructions, and promises made by the scammer.

Screenshots should show:

  1. The account name or number;
  2. Profile URL or username;
  3. Date and time stamps;
  4. Full message thread, not only selected excerpts;
  5. The scammer’s payment instructions;
  6. Delivery promises, investment claims, or false representations.

C. Transaction Records

Attach proof of payment, such as:

  1. Bank transfer slips;
  2. E-wallet receipts;
  3. QR payment confirmations;
  4. Remittance receipts;
  5. Card statements;
  6. Deposit slips;
  7. Transaction reference numbers;
  8. Recipient account name and number;
  9. Merchant or payment gateway records.

D. Account and Identity Information

Include all available identifiers:

  1. Social media profile URLs;
  2. Marketplace links;
  3. Website URLs;
  4. Email addresses;
  5. Mobile numbers;
  6. Bank account numbers;
  7. E-wallet numbers;
  8. Crypto wallet addresses;
  9. Names used by the scammer;
  10. Photos, IDs, or documents sent by the scammer;
  11. Delivery addresses, if any;
  12. IP addresses or login alerts, if available.

E. Platform and Financial Institution Reports

Attach copies of reports submitted to:

  1. Banks;
  2. E-wallets;
  3. Remittance centers;
  4. Social media platforms;
  5. Online marketplaces;
  6. Telecom providers;
  7. Regulatory agencies.

Include ticket numbers, emails, acknowledgments, and replies.

F. Device and Account Logs

If relevant, preserve:

  1. Login alerts;
  2. Security notifications;
  3. OTP messages;
  4. Email forwarding rules;
  5. Browser history;
  6. App installation history;
  7. Malware alerts;
  8. Suspicious device sessions;
  9. SIM-related notifications.

G. Affidavit of Loss or Bank Certification

For certain cases, a financial institution or investigator may require an affidavit of loss, bank certification, or transaction verification. Requirements differ depending on the institution and case type.

VII. Electronic Evidence and Admissibility

Cyber fraud complaints often rely on electronic evidence. Under Philippine rules on electronic evidence, electronic documents and data messages may be admissible if properly identified, authenticated, and shown to be reliable.

To strengthen electronic evidence:

  1. Preserve original files where possible;
  2. Export chat histories if the platform allows it;
  3. Keep emails in their original mailbox;
  4. Avoid cropping screenshots excessively;
  5. Include URLs and timestamps;
  6. Use screen recordings only as supplementary evidence;
  7. Keep devices used in the transaction;
  8. Record metadata where available;
  9. Have printed screenshots notarized or attached to a sworn affidavit, when needed;
  10. Be prepared to explain how the screenshots were obtained.

Courts and prosecutors may evaluate whether the evidence is authentic, complete, and reliable. The victim should avoid altering, editing, or fabricating screenshots. Edited evidence can seriously weaken a case.

VIII. Jurisdiction and Venue

Cyber fraud often involves parties in different cities, provinces, or countries. Jurisdiction and venue may depend on:

  1. Where the complainant resides;
  2. Where the fraudulent communication was received;
  3. Where payment was made;
  4. Where the bank or e-wallet account is maintained;
  5. Where the offender resides or was identified;
  6. Where the harmful effects occurred;
  7. The nature of the offense charged.

For cybercrime offenses, the Cybercrime Prevention Act and related rules recognize the special nature of ICT-enabled crimes. In practice, law enforcement agencies and prosecutors evaluate the proper venue based on the facts, available evidence, and applicable procedural rules.

If the suspect is unknown, the complaint may initially be filed against “John Doe,” “Jane Doe,” an alias, username, account holder, or unknown persons, subject to later identification through investigation.

IX. Filing with the PNP Anti-Cybercrime Group or NBI Cybercrime Division

Although procedures may vary, the usual process includes the following:

Step 1: Prepare Documents

Bring or prepare:

  1. Valid government-issued ID;
  2. Complaint-affidavit;
  3. Evidence folder;
  4. Screenshots and printed copies;
  5. Digital copies on a USB drive or other acceptable storage medium, if allowed;
  6. Transaction receipts;
  7. Platform URLs and account identifiers;
  8. Bank or e-wallet report numbers;
  9. Contact details of witnesses, if any.

Step 2: Submit the Complaint

The complainant submits the complaint to the relevant cybercrime unit. The receiving officer may review the documents, ask clarificatory questions, and require additional evidence.

Step 3: Investigation and Case Build-Up

Investigators may:

  1. Examine digital evidence;
  2. Request preservation of computer data;
  3. Coordinate with banks, platforms, telecoms, or service providers;
  4. Identify account holders;
  5. Trace transactions;
  6. Prepare referrals to the prosecutor;
  7. Apply for cybercrime warrants when legally justified.

Step 4: Referral to Prosecutor

If evidence is sufficient, the case may be referred for preliminary investigation or inquest, depending on circumstances.

Step 5: Preliminary Investigation

The prosecutor determines whether probable cause exists. The respondent may be required to submit a counter-affidavit. If probable cause is found, an Information may be filed in court.

X. Filing Directly with the Prosecutor’s Office

A victim may file a criminal complaint directly with the Office of the City Prosecutor or Provincial Prosecutor.

A typical filing package includes:

  1. Complaint-affidavit;
  2. Witness affidavits;
  3. Copies of evidence;
  4. Certification against forum shopping, if required in the particular filing;
  5. Proof of identity;
  6. Payment of filing or certification fees, if applicable;
  7. Number of copies required by the prosecutor’s office;
  8. Digital copies, if required.

The prosecutor may dismiss the complaint, require additional evidence, subpoena the respondent, conduct preliminary investigation, or recommend filing in court.

XI. Special Considerations for Bank and E-Wallet Fraud

Where funds were transferred through financial accounts, speed is critical.

A. Report Immediately

Victims should immediately notify the bank, e-wallet provider, payment gateway, or card issuer. Ask for the fraud unit or dispute department.

B. Provide Transaction Details

Provide:

  1. Date and time of transaction;
  2. Amount;
  3. Reference number;
  4. Sender account;
  5. Recipient account;
  6. Screenshots;
  7. Police or investigation report, if already available;
  8. Narrative of how the fraud occurred.

C. Request Preservation and Investigation

Ask the institution to preserve relevant records. The institution may have internal procedures and legal limits, but early reporting can help.

D. Understand That Reversal Is Not Guaranteed

Reporting does not automatically guarantee recovery. Funds may have been withdrawn, transferred, converted, or layered. However, prompt reporting improves the chance of tracing and freezing suspicious accounts.

E. Mule Accounts

If the recipient account belongs to a person who allowed another to use the account, lent the account, sold account access, or received suspicious funds, that person may face legal exposure depending on knowledge, participation, and applicable law.

XII. Investment Scams and Online Solicitation

Investment scams require special attention because they may involve securities law, corporate law, estafa, cybercrime, and financial account scamming.

Warning signs include:

  1. Guaranteed high returns;
  2. “No risk” investment claims;
  3. Referral commissions;
  4. Pressure to invest quickly;
  5. Fake SEC registration claims;
  6. Use of celebrities or fake endorsements;
  7. Crypto, forex, casino, mining, or trading claims without proper authority;
  8. Refusal to disclose company officers, address, licenses, or audited records;
  9. Payment to personal accounts instead of corporate accounts.

Victims should report investment scams to law enforcement and the Securities and Exchange Commission. SEC registration as a corporation does not automatically mean authority to solicit investments from the public. A company may be registered as an entity but still lack authority to offer securities or investment contracts.

XIII. Online Selling Scams

For fake online selling, the following facts are important:

  1. What item was offered;
  2. Where it was posted;
  3. Price and payment terms;
  4. Seller’s representations;
  5. Proof of payment;
  6. Delivery promise;
  7. Failure to deliver;
  8. Seller’s excuses or disappearance;
  9. Whether the seller used a fake identity;
  10. Whether there are other victims.

If the seller is identifiable and the dispute is genuinely civil, remedies may include demand letters, mediation, consumer complaint, or small claims. If there was fraudulent intent from the beginning, criminal remedies such as estafa or cybercrime-related fraud may be appropriate.

XIV. Identity Theft, Impersonation, and Fake Accounts

If a scammer uses another person’s name, photo, ID, or account, the victim should:

  1. Report the fake account to the platform;
  2. Preserve screenshots and URLs;
  3. Notify contacts who may be targeted;
  4. File a report with law enforcement;
  5. Consider a complaint involving identity theft;
  6. Report misuse of personal information to the National Privacy Commission where appropriate.

A person whose identity is used may be both a direct victim and a witness in scams committed against others.

XV. Data Privacy Complaints

A data privacy complaint may be relevant when the scam involves unauthorized collection, use, disclosure, sale, or processing of personal information.

Examples include:

  1. A scammer using a victim’s ID or selfie verification;
  2. Unauthorized posting of personal data;
  3. Doxxing or threats to expose personal information;
  4. Misuse of customer data by an organization;
  5. Data breach leading to fraud;
  6. Use of personal information to open accounts.

The National Privacy Commission may be relevant where there is a personal data processing issue. However, the NPC is not a substitute for criminal prosecution when fraud, estafa, hacking, or cybercrime is involved.

XVI. Cybercrime Warrants and Preservation of Data

Cybercrime investigations may require access to electronic data held by platforms, telecoms, banks, or service providers. Investigators may use legal tools such as preservation requests, disclosure orders, search warrants, and other cybercrime warrants, subject to law and court rules.

Victims generally cannot personally compel platforms or banks to disclose confidential subscriber or account data. Law enforcement and courts are usually needed for compulsory disclosure.

This is why formal reporting is important, especially when the suspect is known only by username, phone number, account number, IP address, or online profile.

XVII. Cross-Border Scams

Many online scams involve suspects, servers, platforms, or accounts located outside the Philippines. Cross-border cases are more difficult but not impossible.

Challenges include:

  1. Foreign-based platforms;
  2. International bank or crypto transfers;
  3. Foreign phone numbers;
  4. VPNs and anonymizing tools;
  5. Jurisdictional limits;
  6. Slow international cooperation;
  7. Different privacy and disclosure rules.

The DOJ Office of Cybercrime and law-enforcement agencies may coordinate through appropriate legal channels, including mutual legal assistance and international cooperation mechanisms.

Victims should still file a complaint in the Philippines if they are located in the Philippines, suffered harm in the Philippines, or transacted through Philippine accounts or platforms.

XVIII. Can the Victim Recover the Money?

Recovery depends on several factors:

  1. How quickly the fraud was reported;
  2. Whether funds remain in the recipient account;
  3. Whether the financial institution can hold or trace the funds;
  4. Whether the recipient account holder is identifiable;
  5. Whether there are linked accounts or assets;
  6. Whether a criminal or civil case succeeds;
  7. Whether restitution, settlement, or judgment is obtained.

Filing a criminal complaint may lead to prosecution, but it does not automatically guarantee immediate reimbursement. Victims may need to pursue civil recovery, restitution, settlement, small claims, or enforcement of judgment depending on the case.

XIX. Civil Remedies

Aside from criminal complaints, victims may consider civil remedies.

A. Demand Letter

If the suspect is identified, a demand letter may be sent requiring return of money or performance of obligation. This may also help establish refusal or bad faith.

B. Small Claims

Small claims may be available for recovery of money where the claim falls within the jurisdictional amount and the defendant is identifiable. Lawyers are generally not allowed to appear in small claims proceedings, subject to the rules.

C. Civil Action for Damages

A civil case may be filed for recovery of actual damages, moral damages, exemplary damages, attorney’s fees, and other relief when legally justified.

D. Restitution in Criminal Proceedings

If a criminal case proceeds, the civil liability arising from the offense may be addressed unless separately waived, reserved, or instituted.

XX. Sample Structure of a Complaint-Affidavit

A cyber fraud complaint-affidavit may follow this structure:

Republic of the Philippines [City/Province]

AFFIDAVIT-COMPLAINT

I, [Name], of legal age, Filipino, residing at [address], after being duly sworn, state:

  1. I am the complainant in this case.

  2. On or about [date], I encountered [name/account/page/website] through [platform].

  3. The said person/account represented that [state the promise, offer, investment, item, job, service, or transaction].

  4. Relying on these representations, I communicated with the said person/account through [chat/email/SMS/call] using [username/number/email].

  5. The person/account instructed me to pay [amount] to [bank/e-wallet/account name/account number] for [purpose].

  6. On [date and time], I sent the amount of [amount] through [bank/e-wallet/remittance], with transaction reference number [reference number].

  7. After payment, [describe what happened: non-delivery, blocking, additional demands, disappearance, account deletion, unauthorized transactions, etc.].

  8. I later discovered that the representations were false because [state facts showing fraud].

  9. Attached are copies of screenshots, transaction receipts, account details, URLs, and other evidence marked as Annexes “A” to “__.”

  10. I am executing this affidavit to charge [name/alias/unknown person] for violation of applicable laws, including cybercrime, estafa, identity theft, financial account scamming, and other offenses that the investigating authority or prosecutor may find proper.

IN WITNESS WHEREOF, I have signed this affidavit on [date] at [place].

[Signature] [Name]

SUBSCRIBED AND SWORN to before me this [date] at [place], affiant exhibiting competent proof of identity.

XXI. Practical Checklist Before Filing

Before filing, prepare the following:

  1. Valid government ID;
  2. Written timeline of events;
  3. Complaint-affidavit;
  4. Screenshots of chats, posts, emails, and profiles;
  5. URLs, usernames, phone numbers, and email addresses;
  6. Proof of payment;
  7. Bank or e-wallet transaction records;
  8. Recipient account details;
  9. Platform report confirmation;
  10. Bank or e-wallet fraud report confirmation;
  11. Device logs or login alerts;
  12. Witness affidavits, if any;
  13. Copies of demand letters, if any;
  14. Digital copies of evidence;
  15. Contact details of all involved parties.

XXII. Common Mistakes Victims Should Avoid

Victims should avoid the following:

  1. Deleting conversations after taking screenshots;
  2. Cropping screenshots so much that dates, account names, and URLs are missing;
  3. Posting accusations online without evidence;
  4. Sending more money to “recover” previous payments;
  5. Negotiating with scammers without preserving evidence;
  6. Ignoring bank or e-wallet reporting deadlines;
  7. Filing vague complaints without transaction details;
  8. Relying only on social media reports;
  9. Assuming a corporate registration means an investment offer is lawful;
  10. Sharing OTPs, passwords, or remote access codes;
  11. Allowing another person to use their bank or e-wallet account;
  12. Altering screenshots or fabricating evidence.

XXIII. Role of Lawyers

A lawyer may assist in:

  1. Evaluating the proper criminal charges;
  2. Drafting the complaint-affidavit;
  3. Organizing evidence;
  4. Coordinating with law enforcement;
  5. Filing with the prosecutor;
  6. Sending demand letters;
  7. Pursuing civil recovery;
  8. Advising on data privacy issues;
  9. Representing the victim during preliminary investigation;
  10. Avoiding statements that may weaken the case.

Although a victim may file a complaint without a lawyer, legal assistance is useful in complex cases, high-value scams, corporate fraud, investment schemes, cross-border scams, or cases involving multiple victims.

XXIV. Multiple Victims and Class-Type Complaints

If many people were victimized by the same scam, coordinated filing may strengthen the case. Multiple complainants can show a pattern of fraudulent conduct, common modus operandi, and repeated misrepresentations.

However, each victim should still prepare individual proof of payment, communications, reliance, and loss. Group complaints should be organized carefully to avoid confusion.

XXV. Prescription Periods

Criminal offenses are subject to prescriptive periods. The applicable period depends on the offense charged and the penalty prescribed by law. Victims should not delay filing. Even where prescription has not yet run, delay may make evidence harder to preserve and suspects harder to trace.

For online scams, delay may result in deleted accounts, lost logs, withdrawn funds, inactive phone numbers, and unavailable platform data.

XXVI. Confidentiality and Personal Safety

Victims should be cautious when posting about the scam online. Public posts may warn others, but they may also create risks, including defamation claims, harassment, exposure of personal data, or interference with investigation.

When sharing information publicly, avoid posting sensitive personal data such as full account numbers, addresses, IDs, private conversations of uninvolved persons, or confidential investigation details.

XXVII. Frequently Asked Questions

1. Can I file even if I only know the scammer’s username?

Yes. A complaint may be filed even if the real identity of the scammer is unknown. Provide all available identifiers, including usernames, profile links, phone numbers, email addresses, account numbers, transaction references, and screenshots.

2. Should I file with PNP or NBI?

Either may be appropriate. Both have cybercrime investigation capabilities. The choice may depend on accessibility, case complexity, prior coordination, and the type of incident. A complaint may also be filed directly with the prosecutor.

3. Is a screenshot enough?

A screenshot may be useful, but it is better to preserve original messages, URLs, transaction records, and device logs. Screenshots should be complete, clear, dated, and supported by affidavit.

4. Can the bank return my money immediately?

Not always. Banks and e-wallet providers have procedures and legal limits. Prompt reporting improves the chance of tracing or holding funds, but reimbursement is not automatic.

5. What if the scammer used a fake name?

Use all available identifiers. Law enforcement may trace accounts, numbers, IP addresses, financial records, or platform data through lawful processes.

6. What if the scammer is abroad?

You may still file in the Philippines if the victim, transaction, harm, or relevant acts are connected to the Philippines. Cross-border investigation may require coordination through proper legal channels.

7. Can I sue the account holder who received the money?

Possibly, depending on the facts. If the account holder knowingly participated, acted as a mule, benefited from the fraud, or failed to explain receipt of funds, criminal and civil remedies may be considered. Evidence is necessary.

8. What if I was tricked into lending my bank or e-wallet account?

You should seek legal advice immediately. Allowing another person to use your financial account may expose you to investigation, especially if the account received scam proceeds.

XXVIII. Conclusion

Filing a cyber fraud or online scamming complaint in the Philippines requires prompt action, careful evidence preservation, and proper selection of remedies. The victim should immediately secure accounts, report to the bank or e-wallet provider, preserve digital evidence, report the platform account, and file a formal complaint with the PNP Anti-Cybercrime Group, NBI Cybercrime Division, or prosecutor’s office.

Cyber fraud cases often involve overlapping laws: the Cybercrime Prevention Act, Revised Penal Code provisions on estafa and falsification, the Anti-Financial Account Scamming Act, the Data Privacy Act, the Electronic Commerce Act, consumer protection rules, and financial regulations. Because these cases can involve technical evidence, financial tracing, anonymous suspects, and cross-border elements, early reporting and organized documentation are essential.

A strong complaint should clearly answer five questions: what happened, who was involved, how the deception was carried out, what evidence proves it, and what loss resulted. The better the documentation, the stronger the chance of investigation, prosecution, and possible recovery.

This article is for general legal information in the Philippine context and is not a substitute for advice from counsel on a specific case.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login