How to Report a Scam Website in the Philippines

Introduction

Scam websites are a common form of online fraud in the Philippines. They may appear as online shops, investment platforms, fake government portals, job recruitment pages, lending sites, online casinos, phishing pages, fake bank login pages, cryptocurrency schemes, donation pages, ticketing sites, travel booking pages, or impersonation websites pretending to represent legitimate companies.

A scam website can cause financial loss, identity theft, unauthorized bank or e-wallet transactions, data privacy violations, harassment, blackmail, or reputational damage. Reporting it properly requires more than simply posting a warning online. The victim should preserve evidence, report the website to the proper government and law enforcement agencies, notify banks or e-wallet providers, request takedown from platforms or hosting providers where possible, and consider civil or criminal remedies.

This article explains how to report a scam website in the Philippines, what evidence to gather, which agencies may be involved, what laws may apply, and what practical steps victims should take.

1. What Is a Scam Website?

A scam website is a website created or used to deceive people into giving money, personal data, login credentials, financial information, or other valuable assets.

A scam website may be entirely fake, or it may impersonate a real company, government agency, bank, school, charity, marketplace, celebrity, public figure, or online service.

Common scam websites include:

  1. Fake online stores;
  2. Fake investment platforms;
  3. Fake lending websites;
  4. Phishing websites;
  5. Fake bank login pages;
  6. Fake e-wallet verification pages;
  7. Fake government assistance or registration portals;
  8. Fake job recruitment websites;
  9. Fake travel booking websites;
  10. Fake courier tracking pages;
  11. Fake online casino or betting websites;
  12. Fake cryptocurrency exchanges;
  13. Fake charity or donation pages;
  14. Fake ticket-selling websites;
  15. Fake customer support websites;
  16. Fake “refund” or “claim your prize” pages;
  17. Fake recovery service websites;
  18. Fake law firm or government enforcement websites.

The key element is deception. The website is used to make the victim believe something false so the scammer can obtain money, data, access, or control.

2. Common Types of Scam Websites in the Philippines

A. Fake Online Store Websites

These websites sell gadgets, clothes, shoes, appliances, beauty products, vehicles, concert tickets, or other goods at attractive prices. The victim pays but receives nothing, receives counterfeit items, or receives products very different from what was advertised.

Warning signs include:

  • Prices far below market value;
  • No physical address;
  • No real customer service number;
  • Payment to personal bank or e-wallet accounts;
  • No official receipt;
  • Copied product photos;
  • Newly created website;
  • Refusal of cash-on-delivery or secure payment methods;
  • Pressure to pay immediately.

B. Phishing Websites

Phishing websites pretend to be banks, e-wallets, government portals, email providers, delivery services, or social media platforms. Their purpose is to steal login credentials, OTPs, card numbers, PINs, or personal information.

Common phishing targets include:

  • Online banking accounts;
  • E-wallet accounts;
  • Credit card details;
  • Email accounts;
  • Social media accounts;
  • Government account credentials;
  • Delivery tracking information.

C. Fake Investment Websites

These websites promise high returns, daily earnings, guaranteed profit, crypto trading income, forex gains, task-based commissions, mining rewards, or referral bonuses.

Red flags include:

  • Guaranteed high returns;
  • No real business model;
  • Referral-based rewards;
  • Pressure to recruit;
  • Claims of “SEC registered” without investment authority;
  • Fake dashboards showing profits;
  • Withdrawal blocked unless more money is deposited;
  • Use of celebrity or government endorsement without proof.

D. Fake Lending Websites

Some scam sites pretend to offer fast loans. They may collect processing fees, insurance fees, “unlocking fees,” or personal data. Others may actually release small loans but engage in abusive collection, public shaming, contact list harassment, or data misuse.

E. Fake Job Recruitment Websites

These websites offer local or overseas jobs, remote work, data entry, cruise ship work, caregiver jobs, factory jobs, or work-from-home opportunities. Victims are asked to pay placement fees, training fees, medical fees, visa fees, or document processing fees.

F. Fake Government Websites

Scammers may copy the appearance of government pages and claim to process IDs, permits, benefits, subsidies, tax refunds, SIM registration, business registration, passport appointments, driver’s license services, or clearance applications.

G. Fake Charity or Donation Websites

These sites exploit disasters, medical emergencies, animal rescue, religious causes, or public tragedies to collect donations.

H. Fake Customer Support Websites

Scammers create websites pretending to be official support for banks, airlines, courier services, e-wallets, online marketplaces, or tech companies. Victims are tricked into giving OTPs, remote access, or payment details.

I. Fake Recovery Websites

After a victim is scammed, another scammer may claim to recover the money for an upfront fee. These “recovery agents” may pretend to be lawyers, hackers, police contacts, bank insiders, or international fund recovery specialists.

3. Immediate Steps After Discovering a Scam Website

Step 1: Stop Sending Money

Do not pay additional fees, taxes, release charges, verification fees, withdrawal fees, courier charges, anti-money laundering fees, or recovery fees.

A common scam pattern is that the website first takes the victim’s money, then demands more money to supposedly release goods, winnings, loans, investments, or refunds.

Step 2: Do Not Enter More Personal Information

Stop uploading IDs, selfies, signatures, bank details, e-wallet numbers, OTPs, passwords, or credit card information.

Step 3: Preserve Evidence Immediately

Scam websites can disappear, change domains, delete pages, or block victims. Capture evidence while the site is still accessible.

Step 4: Contact Your Bank, E-Wallet, or Card Issuer

If payment was made, immediately report fraud to your bank, e-wallet provider, credit card issuer, payment gateway, or remittance provider.

Step 5: Change Passwords and Secure Accounts

If you entered login credentials, immediately change passwords and enable two-factor authentication.

Step 6: File Reports with Proper Authorities

Depending on the scam, report to cybercrime authorities, police, regulators, banks, platforms, and other relevant agencies.

4. Evidence to Preserve

Evidence is the foundation of any complaint. Without evidence, authorities and financial institutions may have difficulty acting.

A. Website Evidence

Save:

  1. Website URL;
  2. Domain name;
  3. Screenshots of homepage;
  4. Screenshots of product, investment, job, loan, or service offer;
  5. Screenshots of checkout or payment page;
  6. Screenshots of fake license, permit, or registration claims;
  7. Screenshots of terms and conditions;
  8. Screenshots of contact page;
  9. Screenshots of account dashboard;
  10. Screenshots of blocked account or error messages;
  11. Date and time when screenshots were taken;
  12. Browser history showing visits to the site.

B. Payment Evidence

Save:

  1. Bank transfer receipts;
  2. E-wallet receipts;
  3. Credit card transaction records;
  4. QR code payment screenshots;
  5. Reference numbers;
  6. Recipient account name;
  7. Recipient account number or mobile number;
  8. Date and time of transaction;
  9. Amount paid;
  10. Crypto wallet address and transaction hash, if applicable;
  11. Remittance receipts;
  12. Payment gateway confirmation emails.

C. Communication Evidence

Save:

  1. Emails;
  2. SMS messages;
  3. Messenger, Viber, WhatsApp, Telegram, or chat logs;
  4. Customer support conversations;
  5. Call logs;
  6. Voice messages;
  7. Screenshots of threats or promises;
  8. Instructions to pay;
  9. Names, usernames, and profile links of agents;
  10. Social media ads or posts that led to the site.

D. Identity Theft Evidence

If personal data was submitted, preserve proof of:

  1. IDs uploaded;
  2. Selfies submitted;
  3. Forms filled out;
  4. Passwords or OTPs requested;
  5. Unauthorized account access;
  6. New loans or accounts opened in your name;
  7. Data posted publicly;
  8. Harassment or blackmail.

E. Timeline

Prepare a clear timeline:

Date Event Amount Evidence
______ Found website through ad/search/message Screenshot
______ Registered account Account screenshot
______ Paid deposit/order/fee ₱____ Receipt
______ Asked for delivery/withdrawal/refund Chat
______ Website demanded additional payment ₱____ Chat
______ Reported to bank/e-wallet Reference no.

5. Do Not Destroy or Alter Digital Evidence

Do not edit screenshots in a way that changes meaning. Do not delete chat threads. Do not fabricate missing messages. Do not create fake receipts.

Preserve both:

  • Original digital files; and
  • Printed copies for filing.

Where possible, export chats or emails in their original format. Keep the phone, computer, browser history, email account, and transaction notifications available in case investigators need to inspect them.

6. Reporting to Banks, E-Wallets, and Payment Providers

If money was sent, report immediately to the payment channel used.

A. Why Speed Matters

Scam proceeds are often moved quickly through multiple accounts. Fast reporting may help the bank or e-wallet:

  1. Flag the recipient account;
  2. Freeze remaining funds, if possible;
  3. Preserve transaction records;
  4. Open a fraud investigation;
  5. Assist law enforcement;
  6. Process chargeback or dispute requests where available;
  7. Prevent other victims from sending money.

B. What to Provide

Give the bank or e-wallet:

  1. Your name and account details;
  2. Transaction date and time;
  3. Amount;
  4. Reference number;
  5. Recipient name and account number;
  6. Website URL;
  7. Screenshots of payment instructions;
  8. Screenshots of scam offer;
  9. Police or cybercrime report, if already available;
  10. Written statement that the transaction was induced by fraud.

C. What to Request

Ask for:

  1. Fraud report filing;
  2. Case or reference number;
  3. Account freezing or hold action if possible;
  4. Transaction tracing;
  5. Chargeback or dispute review, if available;
  6. Written acknowledgment of complaint;
  7. Preservation of records for law enforcement.

D. Credit Card Payments

If payment was made by credit card, ask about chargeback. Provide proof that the merchant failed to deliver, misrepresented goods or services, or operated fraudulently.

E. Bank Transfers and E-Wallet Transfers

Recovery is harder for direct transfers, but immediate reporting is still important. Even if the bank cannot reverse the transaction immediately, a fraud report helps preserve the record and may support investigation.

7. Reporting to Cybercrime Authorities

Most scam websites involve online fraud and should be reported to cybercrime authorities.

Cybercrime reporting is appropriate when the scam involved:

  1. A website or app;
  2. Online payment;
  3. Phishing;
  4. Identity theft;
  5. Unauthorized access;
  6. Fake login page;
  7. Fake investment dashboard;
  8. Fake online store;
  9. Fake lending site;
  10. Online threats or blackmail;
  11. Social media recruitment;
  12. Crypto transactions;
  13. Malware or remote access tools.

A. What to Bring or Submit

Prepare:

  1. Valid government ID;
  2. Printed complaint narrative;
  3. Screenshots of the website;
  4. Website URL;
  5. Payment receipts;
  6. Chat logs;
  7. Email messages;
  8. Social media links;
  9. Bank or e-wallet recipient details;
  10. Total amount lost;
  11. Timeline;
  12. Digital copies of all evidence;
  13. Bank or e-wallet complaint reference number.

B. Why a Cybercrime Report Helps

A cybercrime report can help:

  1. Identify suspects;
  2. Trace domains, hosting, and accounts;
  3. Preserve digital evidence;
  4. Coordinate with banks and platforms;
  5. Support account freezing;
  6. Support criminal prosecution;
  7. Support takedown requests;
  8. Establish that the victim acted promptly.

8. Reporting to the Philippine National Police or NBI

Victims may report to law enforcement agencies such as the police or the National Bureau of Investigation, especially if the scam involves fraud, identity theft, phishing, extortion, or organized online deception.

A. Police Blotter vs. Formal Complaint

A police blotter records that an incident was reported. It is useful as initial documentation, but it does not automatically start a full criminal prosecution.

A formal complaint requires evidence, affidavits, and investigation. It may eventually be referred to the prosecutor’s office for preliminary investigation or inquest, depending on the circumstances.

B. When to File with Law Enforcement

File with law enforcement if:

  1. You lost money;
  2. Your identity documents were stolen;
  3. Your bank or e-wallet account was compromised;
  4. The website impersonated a company or government agency;
  5. You were threatened or blackmailed;
  6. The scammer continues contacting you;
  7. Multiple victims exist;
  8. The scam involves large amounts;
  9. The recipient account is identifiable;
  10. The website is still active.

9. Reporting to the National Privacy Commission

If the scam website collected, misused, exposed, sold, or abused personal information, a data privacy complaint may be considered.

This may apply when the website requested or obtained:

  1. Government IDs;
  2. Selfies;
  3. Signatures;
  4. Address;
  5. Birthdate;
  6. Bank details;
  7. Contact list;
  8. Employment information;
  9. Medical information;
  10. Photos;
  11. Login credentials.

Data Privacy Issues May Include

  1. Unauthorized collection of personal information;
  2. Misuse of submitted IDs;
  3. Posting personal data online;
  4. Harassment using contact lists;
  5. Identity theft;
  6. Unauthorized sharing of personal information;
  7. Failure to secure personal data.

If the scammer is unknown or fake, enforcement may be difficult, but reporting can still help create a record and support broader investigation.

10. Reporting Fake Investment Websites

If the website offers investments, trading, crypto returns, staking, mining, profit-sharing, securities, franchises, or passive income opportunities, consider reporting to the proper financial or securities regulator.

A fake investment website may violate securities laws if it solicits investments from the public without proper registration or authority.

Warning Signs of Investment Scam Websites

  1. Guaranteed profit;
  2. Very high returns in a short period;
  3. Referral commissions;
  4. Fake trading dashboard;
  5. “No risk” claims;
  6. Celebrity endorsements;
  7. Claims of government registration but no authority to solicit investments;
  8. Withdrawal blocked unless more money is deposited;
  9. Pressure to invest immediately;
  10. Use of crypto to avoid traceability.

Evidence to Gather

  1. Investment offer screenshots;
  2. Promised returns;
  3. Account dashboard;
  4. Referral system;
  5. Payment receipts;
  6. Names of recruiters;
  7. Group chats;
  8. Withdrawal refusal;
  9. Claimed registration documents;
  10. Marketing materials.

11. Reporting Fake Online Stores

If the scam website is an online store, report to:

  1. Payment provider;
  2. Law enforcement or cybercrime authorities;
  3. Marketplace or social media platform if promoted there;
  4. Relevant consumer protection channels where appropriate.

Evidence to Preserve

  1. Product listing;
  2. Price and description;
  3. Order confirmation;
  4. Payment receipt;
  5. Delivery promise;
  6. Tracking number, if fake;
  7. Conversation with seller;
  8. Refusal to refund;
  9. Wrong or counterfeit item received;
  10. Website URL.

Civil vs. Criminal Issue

Not every failed delivery is automatically criminal fraud. A delayed shipment or poor service may be a consumer dispute. But if the website was created to deceive, used fake identity, took money repeatedly, blocked customers, or never intended to deliver, criminal fraud may be involved.

12. Reporting Phishing Websites

Phishing websites are urgent because they can lead to immediate account takeover.

If You Entered Bank or E-Wallet Credentials

Immediately:

  1. Change password;
  2. Contact bank or e-wallet provider;
  3. Request account lock or monitoring;
  4. Review transactions;
  5. Disable compromised cards if necessary;
  6. Change email password;
  7. Enable two-factor authentication;
  8. Report phishing URL;
  9. File cybercrime report if money was lost.

If You Entered OTP

An OTP should never be shared. If entered into a phishing site, immediately report possible compromise to the relevant institution.

Evidence to Preserve

  1. Phishing URL;
  2. SMS or email that led to the site;
  3. Screenshot of fake login page;
  4. Time credentials were entered;
  5. Unauthorized transaction details;
  6. Device used;
  7. Bank or e-wallet notification.

13. Reporting Fake Lending Websites

Fake lending websites may scam victims through advance fees or misuse personal data.

Common Loan Scam Patterns

  1. Loan approved but release requires processing fee;
  2. Insurance fee required before release;
  3. Collateral fee or activation fee demanded;
  4. Borrower is asked to pay to correct a “wrong account number”;
  5. App collects contacts and photos;
  6. Loan is never released;
  7. Borrower is harassed despite no loan received.

What to Report

  1. Website or app name;
  2. URL or download link;
  3. Loan offer;
  4. Fees paid;
  5. Account receiving payment;
  6. Personal data collected;
  7. Harassment messages;
  8. Threats to contact employer or relatives;
  9. Public shaming or data exposure.

14. Reporting Fake Job Websites

Fake job websites may involve illegal recruitment, estafa, identity theft, or labor-related fraud.

Red Flags

  1. Placement fee required before interview;
  2. Guaranteed overseas job;
  3. No verifiable employer;
  4. Fake work visa processing;
  5. Fake agency license;
  6. Payment to personal account;
  7. Interviews only through chat;
  8. No written employment contract;
  9. Request for passport or ID copies without legitimate process;
  10. Promise of unusually high salary for minimal qualifications.

Evidence

  1. Job advertisement;
  2. Website URL;
  3. Agency or employer name;
  4. Recruiter profile;
  5. Payment receipts;
  6. Chat logs;
  7. Fake contract;
  8. Fake visa documents;
  9. Passport or ID submission proof.

15. Reporting Fake Government Websites

If a website pretends to be a government agency, report to:

  1. The impersonated government agency;
  2. Cybercrime authorities;
  3. Law enforcement;
  4. Bank or e-wallet provider if payment was made;
  5. Hosting or domain provider if takedown is pursued.

Common Fake Government Claims

  1. Cash aid application;
  2. Tax refund;
  3. License renewal;
  4. Passport appointment;
  5. National ID assistance;
  6. Driver’s license processing;
  7. Business permit service;
  8. Police or NBI clearance shortcut;
  9. Scholarship grant;
  10. SIM registration or account verification.

Never pay fees to personal accounts for government processing unless the official procedure clearly allows the payment channel.

16. Reporting Scam Websites to Platforms and Search Engines

In addition to government complaints, victims may report the scam website to platforms that help distribute or host it.

Depending on the case, report to:

  1. Social media platforms where the link was posted;
  2. Search engines showing the link;
  3. Web hosting provider;
  4. Domain registrar;
  5. App stores;
  6. Payment processors;
  7. Advertising platforms;
  8. Messaging platforms.

Why Platform Reports Matter

Platform reports may lead to:

  1. Takedown of fake pages;
  2. Removal from search results;
  3. Suspension of ads;
  4. App removal;
  5. Blocking of malicious links;
  6. Preservation of account information;
  7. Prevention of further victims.

Platform takedown does not replace criminal reporting, but it can reduce harm.

17. How to Find Useful Website Information

A complainant may record:

  1. Full URL;
  2. Domain name;
  3. Subdomain;
  4. Redirect links;
  5. IP address, if known;
  6. Hosting provider, if identifiable;
  7. Domain registrar, if identifiable;
  8. Date the site was accessed;
  9. Screenshots showing the site live;
  10. Email addresses associated with the site;
  11. Payment pages.

Avoid hacking or unauthorized access. Only collect publicly visible information and your own transaction records.

18. What If the Scam Website Disappears?

A website disappearing does not mean the complaint is useless.

Preserve:

  1. Screenshots already taken;
  2. Browser history;
  3. Cached pages if available;
  4. Emails;
  5. Receipts;
  6. Chat logs;
  7. Payment records;
  8. Domain name;
  9. Social media ads;
  10. Referral links.

Scam websites often reappear under new domains. Report all known versions.

19. What If the Website Uses a Foreign Domain?

Even if the domain is foreign, report it if:

  1. Victims are in the Philippines;
  2. Payment was sent from the Philippines;
  3. Philippine bank or e-wallet accounts were used;
  4. Filipino agents or recruiters were involved;
  5. The site impersonated a Philippine company or agency;
  6. Personal data of Filipinos was collected.

Enforcement may be harder, but local payment accounts, agents, or advertisers may still be traceable.

20. What If Payment Was Made to a Personal Account?

Payment to a personal bank or e-wallet account is a major red flag.

Report the recipient account to:

  1. Your bank or e-wallet;
  2. Recipient’s bank or e-wallet if possible;
  3. Cybercrime authorities;
  4. Law enforcement.

Include:

  • Account name;
  • Account number or mobile number;
  • Amount;
  • Date and time;
  • Reference number;
  • Screenshot of payment instruction;
  • Screenshot of transfer confirmation.

The account may belong to the scammer, a mule, a recruited agent, or an identity theft victim.

21. What If Payment Was Made Through Cryptocurrency?

Crypto transactions are difficult to reverse, but they can still be reported.

Preserve:

  1. Wallet address;
  2. Transaction hash;
  3. Exchange used;
  4. Screenshots of instructions;
  5. Amount and token type;
  6. Date and time;
  7. Chat logs;
  8. Account dashboard.

Report to the crypto exchange if identifiable and to cybercrime authorities.

22. What If You Installed an App from the Scam Website?

If the website made you install an app, the app may contain malware, spyware, credential-stealing functions, remote access tools, or abusive permissions.

Immediate steps:

  1. Disconnect from sensitive accounts;
  2. Do not enter more credentials;
  3. Remove the app;
  4. Scan device with reputable security tools;
  5. Change passwords from a different trusted device;
  6. Review bank and e-wallet transactions;
  7. Disable compromised cards if needed;
  8. Report the app link;
  9. Preserve screenshots and app details before deletion if safe.

If the app requested accessibility permissions, SMS access, contact access, or remote control, treat it seriously.

23. What If You Shared OTPs, Passwords, or PINs?

Act immediately.

  1. Contact bank or e-wallet provider;
  2. Change passwords;
  3. Lock account if possible;
  4. Change email password;
  5. Review linked devices;
  6. Remove unauthorized devices;
  7. Enable two-factor authentication;
  8. Report unauthorized transactions;
  9. File a cybercrime report.

Do not wait to see what happens. Account takeover can occur quickly.

24. What If Your Social Media Account Was Compromised?

Scam websites often steal social media credentials and then use the account to scam friends.

Steps:

  1. Recover the account;
  2. Change password;
  3. Log out all devices;
  4. Enable two-factor authentication;
  5. Warn contacts not to send money;
  6. Review posts and messages;
  7. Report unauthorized transactions;
  8. Preserve phishing link and login page screenshots;
  9. Report to the platform.

25. What If Your Email Was Compromised?

Email compromise is serious because email controls password resets.

Steps:

  1. Change email password immediately;
  2. Check recovery email and phone number;
  3. Remove forwarding rules;
  4. Review login activity;
  5. Change passwords of linked accounts;
  6. Enable two-factor authentication;
  7. Alert banks and e-wallets if financial accounts are linked;
  8. Preserve phishing evidence.

26. Legal Basis: Possible Crimes and Violations

A scam website may involve several legal violations, depending on the facts.

A. Estafa

Estafa may apply where the scammer used deceit to obtain money or property from the victim.

Examples:

  • Fake online store takes payment but never intends to deliver;
  • Fake investment site promises returns and disappears;
  • Fake loan site collects fees but never releases loan;
  • Fake agent obtains money through false representation.

B. Cybercrime

If fraud is committed using a computer system, website, app, or online communication, cybercrime laws may apply.

Online fraud, identity theft, illegal access, misuse of devices, and related acts may be involved depending on the facts.

C. Identity Theft

If the scam website collected personal data and used it to impersonate the victim, open accounts, apply for loans, or access services, identity theft may be involved.

D. Unauthorized Access

If the scam led to unauthorized access to bank, e-wallet, email, or social media accounts, additional cybercrime issues may arise.

E. Data Privacy Violations

If personal information was collected, processed, disclosed, or misused unlawfully, data privacy remedies may be relevant.

F. Illegal Recruitment

If the scam involved fake jobs or overseas employment, illegal recruitment laws may apply.

G. Securities Violations

If the scam involved unauthorized investments or securities offerings, securities laws may apply.

H. Consumer Protection Violations

If the scam involved deceptive sales practices, product misrepresentation, or unfair online transactions, consumer protection remedies may be considered.

I. Falsification and Impersonation

If the website used fake permits, fake IDs, fake government certificates, or impersonated a company or agency, falsification or related offenses may be involved.

27. Where to Report Depending on the Scam Type

Fake Online Store

Report to:

  • Bank or e-wallet provider;
  • Cybercrime authorities;
  • Police or NBI;
  • Platform where advertised;
  • Consumer protection channels where appropriate.

Phishing Website

Report to:

  • Bank or e-wallet provider immediately;
  • Cybercrime authorities;
  • Impersonated company or government agency;
  • Browser/search engine/platform;
  • Police or NBI if money was lost.

Fake Investment Website

Report to:

  • Securities or financial regulator;
  • Cybercrime authorities;
  • Bank or e-wallet provider;
  • Police or NBI;
  • Social media or ad platform.

Fake Lending Website

Report to:

  • Financial or lending regulator where applicable;
  • Cybercrime authorities;
  • Data privacy authority if personal data was misused;
  • Bank or e-wallet provider;
  • Police or NBI for threats or fraud.

Fake Job Website

Report to:

  • Labor or migrant worker authorities, depending on local or overseas job;
  • Cybercrime authorities;
  • Police or NBI;
  • Bank or e-wallet provider;
  • Platform where advertised.

Fake Government Website

Report to:

  • Impersonated government agency;
  • Cybercrime authorities;
  • Police or NBI;
  • Bank or e-wallet provider;
  • Search engine or hosting provider.

28. How to Prepare a Formal Complaint

A formal complaint should be clear and organized.

Basic Structure

  1. Name of complainant;
  2. Contact details;
  3. Address;
  4. Name or URL of scam website;
  5. Description of how the website was discovered;
  6. Date of first contact;
  7. Amount paid or data submitted;
  8. Payment details;
  9. What was promised;
  10. What actually happened;
  11. Why it appears fraudulent;
  12. Actions already taken;
  13. Relief requested;
  14. List of attachments.

Tone

Use factual language. Avoid unnecessary insults or speculation. State what you personally know and attach proof.

29. Sample Complaint Narrative

I am filing this complaint regarding a scam website operating through the URL ______. I discovered the website on ______ through ______. The website represented itself as ______ and offered ______.

On ______, I created an account / placed an order / applied for a loan / invested funds / entered my information. I was instructed to pay through ______ to the account name/number . I paid ₱ on ______, with reference number ______.

After payment, the website failed to deliver the promised product/service/withdrawal/refund. Instead, I was asked to pay additional amounts for ______, or I was blocked from accessing the account.

I believe the website is fraudulent because ______. Attached are screenshots of the website, payment receipts, chat messages, account details, and other supporting evidence.

I respectfully request investigation, assistance in tracing the responsible persons and payment accounts, preservation of records, and appropriate legal action.

30. Sample Report to Bank or E-Wallet Provider

I am reporting a suspected scam transaction connected with a fraudulent website.

Website: ______ Date of transaction: ______ Amount: ₱______ Reference number: ______ Recipient name/account/mobile number: ______

I was induced to send the money based on the website’s false representation that ______. After payment, the website failed to deliver and demanded additional payment / blocked me / disappeared.

I request urgent fraud investigation, preservation of transaction records, and account freezing or hold action if available under your procedures.

31. Sample Takedown Report to Platform or Host

I am reporting a website that appears to be engaged in fraud, phishing, impersonation, or unauthorized collection of personal/financial information.

URL: ______ Description of violation: ______ Evidence: screenshots attached

The website has been used to deceive users into sending money or submitting sensitive information. Please review the website for suspension, takedown, or other appropriate action.

32. Can You Get Your Money Back?

Recovery is possible in some cases but not guaranteed.

Factors That Affect Recovery

  1. How quickly the fraud was reported;
  2. Payment method used;
  3. Whether funds remain in the recipient account;
  4. Whether the recipient account is verified;
  5. Whether the bank or e-wallet can freeze funds;
  6. Whether the scammer is identified;
  7. Whether the website is linked to a registered business;
  8. Whether chargeback rights apply;
  9. Whether law enforcement can trace the suspects;
  10. Whether multiple victims report promptly.

Most Difficult to Recover

  1. Cash deposits to unknown persons;
  2. Bank transfers withdrawn immediately;
  3. E-wallet transfers cashed out quickly;
  4. Cryptocurrency transfers;
  5. Payments to foreign scammers;
  6. Payments made through mule accounts.

Even if recovery is uncertain, reporting helps preserve evidence and may prevent further victims.

33. Should You Send a Demand Letter?

A demand letter may be useful if the website is connected to a real business or identifiable person.

It may ask for:

  1. Refund;
  2. Delivery of goods;
  3. Account reinstatement;
  4. Withdrawal release;
  5. Explanation;
  6. Cessation of data misuse;
  7. Preservation of records.

However, if the website is clearly fake, a demand letter may simply alert scammers. In obvious cyberfraud cases, prioritize bank reports and law enforcement complaints.

34. When to Consult a Lawyer

Consult a lawyer if:

  1. The amount lost is significant;
  2. Your identity documents were misused;
  3. You are being threatened or blackmailed;
  4. The scam involves a business partner or known person;
  5. You need to file a formal criminal complaint;
  6. You need to pursue civil recovery;
  7. You are accused of participating in the scam;
  8. You acted as an agent or recruiter without knowing it was a scam;
  9. There are multiple victims;
  10. The website impersonated your business.

A lawyer can help prepare affidavits, demand letters, complaints, and evidence packets.

35. If Your Business Is Being Impersonated by a Scam Website

A legitimate business may discover that scammers created a fake website using its name, logo, products, or contact details.

Immediate steps:

  1. Screenshot the fake website;
  2. Record the URL and domain;
  3. Warn customers through official channels;
  4. Report to hosting provider and domain registrar;
  5. Report to cybercrime authorities;
  6. Report fake payment accounts;
  7. File intellectual property or trademark-related complaints if applicable;
  8. Notify banks, payment processors, and platforms;
  9. Monitor social media for related fake pages;
  10. Consider public advisory.

The business should clearly identify its official website and payment channels.

36. If a Government Agency Is Being Impersonated

If the scam website impersonates a government agency, report the fake site to the actual agency and cybercrime authorities. Government impersonation can mislead many people and may involve collection of IDs, fees, passwords, or sensitive information.

Victims should not rely on search results alone when accessing government services. Type official addresses carefully and avoid links from unsolicited messages.

37. If the Scam Website Is Still Active

If the website is still active:

  1. Do not engage further except to preserve evidence;
  2. Screenshot key pages;
  3. Record URLs;
  4. Report to banks/e-wallets;
  5. File reports with authorities;
  6. Report to hosting provider or platform;
  7. Warn close contacts privately if they may be targeted;
  8. Avoid posting sensitive evidence publicly.

Do not attempt to hack, attack, or overload the website. That may create legal problems for you.

38. If the Scam Website Uses Your Photos or Identity

If your identity or photos are used:

  1. Screenshot the pages;
  2. Report to the website host and platform;
  3. Report identity misuse to cybercrime authorities;
  4. Inform banks or institutions if financial identity may be affected;
  5. Consider data privacy complaint;
  6. Warn contacts if scammers are using your identity to solicit money;
  7. Consider affidavit of denial or public advisory if needed.

39. If the Scam Website Uses Your Bank or E-Wallet Account Without Consent

If your account was used as a mule account without your knowledge:

  1. Contact the bank/e-wallet immediately;
  2. Freeze or secure the account;
  3. Report unauthorized access;
  4. Preserve login and transaction records;
  5. Change passwords and credentials;
  6. File a police or cybercrime report;
  7. Cooperate with investigation;
  8. Do not withdraw or transfer suspicious funds;
  9. Consult a lawyer if your account is linked to complaints.

40. If You Were Recruited to Promote the Website

Some people unknowingly promote scam websites as affiliates, agents, influencers, or recruiters.

If you discover the website is fraudulent:

  1. Stop promoting immediately;
  2. Preserve your recruitment conversations;
  3. Identify who recruited you;
  4. Inform people you referred;
  5. Do not collect or forward more money;
  6. File a report if you were deceived;
  7. Consult a lawyer if you received commissions or handled funds.

Continuing to promote after learning of the scam may create legal exposure.

41. Reporting Scam Websites Involving Minors

If minors are targeted, such as through gaming scams, fake scholarships, sextortion pages, fake modeling jobs, or phishing links, report immediately.

Preserve evidence but avoid redistributing sensitive images or personal data. In cases involving sexual exploitation, blackmail, or child abuse material, seek law enforcement assistance immediately and do not share the material casually.

42. Scam Website and Sextortion

Some scam websites or links are used to obtain intimate images, social media access, or personal data for blackmail.

If this happens:

  1. Do not pay;
  2. Preserve threats and messages;
  3. Secure social media accounts;
  4. Report to platform;
  5. Report to cybercrime authorities;
  6. Inform trusted people if needed;
  7. Do not send more images;
  8. Do not engage in prolonged negotiation.

If minors are involved, urgent reporting is necessary.

43. Scam Website and Malware

A scam website may install malware or lead to malicious downloads.

Warning signs:

  1. Device slows down after visiting site;
  2. Unknown app installed;
  3. Browser redirects;
  4. Unauthorized transactions;
  5. Passwords changed;
  6. Contacts receive strange messages;
  7. New login alerts;
  8. Antivirus warnings.

Steps:

  1. Disconnect from suspicious activity;
  2. Scan device;
  3. Remove suspicious apps;
  4. Change passwords from a clean device;
  5. Check financial accounts;
  6. Report unauthorized transactions;
  7. Preserve evidence of the malicious link.

44. Scam Website and Remote Access Apps

Scammers sometimes instruct victims to install remote access apps, claiming they will help process refunds, fix accounts, or verify transactions.

Do not allow remote access to your phone or computer. If you already did:

  1. Disconnect internet;
  2. Uninstall remote access app;
  3. Change passwords from another device;
  4. Contact bank/e-wallet;
  5. Review transactions;
  6. File fraud report;
  7. Consider device reset after backing up essential files safely.

45. How to Avoid Weak Complaints

A weak complaint usually lacks:

  1. URL;
  2. Screenshots;
  3. Payment receipt;
  4. Recipient account details;
  5. Timeline;
  6. Proof of communication;
  7. Amount lost;
  8. Explanation of deception.

A strong complaint is specific, chronological, and supported by attachments.

46. Common Mistakes Victims Make

Avoid these mistakes:

  1. Continuing to send money;
  2. Believing “one final fee” promises;
  3. Deleting chats out of embarrassment;
  4. Waiting too long to report;
  5. Posting all evidence publicly before reporting;
  6. Sharing OTPs with “investigators” or “recovery agents”;
  7. Paying hackers to recover funds;
  8. Filing vague complaints without evidence;
  9. Ignoring identity theft risk;
  10. Using the same password after phishing;
  11. Not reporting to the bank or e-wallet immediately;
  12. Assuming nothing can be done because the website disappeared.

47. Recovery Scam Warning

After reporting or posting about a scam, victims may be contacted by people claiming they can recover funds.

Be suspicious of anyone who:

  1. Guarantees recovery;
  2. Requires upfront payment;
  3. Claims to know bank insiders;
  4. Claims to be from police, NBI, or a regulator but uses personal accounts;
  5. Requests OTPs, passwords, or remote access;
  6. Uses fake certificates;
  7. Refuses official identification;
  8. Pressures you to act immediately.

Do not become a victim twice.

48. Practical Reporting Checklist

Before filing reports, prepare:

  1. Valid ID;
  2. Written complaint narrative;
  3. Website URL;
  4. Screenshots of website;
  5. Screenshots of offer or fake claim;
  6. Account registration proof;
  7. Payment receipts;
  8. Recipient account details;
  9. Chat logs;
  10. Emails or SMS;
  11. Social media profile links;
  12. Timeline;
  13. Total loss computation;
  14. Bank/e-wallet report reference number;
  15. Digital copies of all evidence.

49. Suggested Reporting Sequence

A practical order is:

  1. Stop sending money or data;
  2. Preserve evidence immediately;
  3. Secure compromised accounts;
  4. Report financial transactions to bank/e-wallet/card issuer;
  5. File cybercrime or law enforcement report;
  6. Report to relevant regulator depending on scam type;
  7. Report to platform, host, domain registrar, search engine, or app store;
  8. Monitor accounts and identity misuse;
  9. Consult a lawyer for significant losses or complex cases.

50. Special Case: Website Impersonating a Bank or E-Wallet

If the scam website impersonates a bank or e-wallet:

  1. Contact the real bank/e-wallet immediately;
  2. Lock account if needed;
  3. Change credentials;
  4. Report unauthorized transactions;
  5. Submit phishing URL;
  6. File cybercrime report if money or data was stolen;
  7. Warn contacts if account was used to message others.

Never click banking links from unsolicited SMS, emails, or messages. Access financial accounts only through official apps or typed official addresses.

51. Special Case: Website Impersonating a Courier

Fake courier websites may ask for small redelivery fees, customs fees, or address confirmation. These scams steal card details or e-wallet credentials.

If victimized:

  1. Contact card issuer or e-wallet;
  2. Disable card if needed;
  3. Preserve SMS and fake tracking page;
  4. Report phishing site;
  5. Monitor accounts.

52. Special Case: Website Selling Vehicles or Real Estate

Scam websites may advertise cars, motorcycles, condo units, rental properties, or land. Victims are asked to pay reservation fees or deposits.

Before paying, verify:

  1. Seller identity;
  2. Property title or vehicle registration;
  3. Authority to sell;
  4. Actual inspection;
  5. Official receipts;
  6. Business registration;
  7. Escrow or secure payment options.

If scammed, report payment accounts, preserve listing screenshots, and file law enforcement reports.

53. Special Case: Website Offering Government IDs or Permits

Fake websites may offer passports, driver’s licenses, national IDs, police clearances, NBI clearances, birth certificates, business permits, visas, or tax documents.

These may involve fraud and possible use of fake government documents.

Do not submit personal data or pay through unofficial channels. If already done, report to the impersonated agency and cybercrime authorities.

54. Special Case: Website Offering “Guaranteed Visa” or Overseas Work

If the scam involves overseas work, visa processing, or migration services:

  1. Preserve job offer;
  2. Preserve recruiter details;
  3. Preserve payment receipts;
  4. Check whether the recruiter or agency is authorized;
  5. Report to labor or migrant worker authorities where appropriate;
  6. File cybercrime or police complaint if fraud occurred.

55. Special Case: Website Offering Online Casino or Betting

If the scam involves online gambling:

  1. Verify whether the operator is authorized;
  2. Do not pay withdrawal fees to personal accounts;
  3. Preserve account and payment records;
  4. Report to gaming regulator if license is claimed;
  5. Report to cybercrime authorities if fake or fraudulent;
  6. Report payment channels.

56. Frequently Asked Questions

Can I report a scam website even if I did not lose money?

Yes. Reporting can help prevent other victims, especially if the site is phishing, impersonating a company, or collecting personal data.

Should I report first to the bank or police?

If money was transferred, report to the bank or e-wallet immediately because timing matters. Then file with cybercrime authorities or law enforcement.

Is a screenshot enough?

A screenshot helps, but stronger evidence includes the URL, payment receipt, chat logs, account details, and timeline.

Can I recover money sent to a scam website?

Possibly, but recovery is not guaranteed. Fast reporting improves the chance of freezing funds or supporting investigation.

What if I am embarrassed because the scam involved dating, gambling, loans, or adult content?

Still report if you suffered fraud, threats, or identity theft. Focus on facts and evidence.

What if the website is foreign?

Report if you are in the Philippines, paid from the Philippines, or Philippine accounts or agents were involved.

Can I post the scammer’s details online?

Be careful. Public accusations can create defamation, privacy, or safety issues. Report to authorities and platforms first.

What if the website used a real company’s name?

Report to the real company and authorities. It may be impersonation.

What if the scammer asks for another payment to refund me?

Do not pay. That is a common second-stage scam.

What if I uploaded my ID?

Monitor for identity theft, secure accounts, and include the data exposure in your complaint.

57. Key Points to Remember

  1. Stop sending money immediately.
  2. Preserve evidence before the website disappears.
  3. Report payment transactions to banks or e-wallets quickly.
  4. File cybercrime or law enforcement reports for online fraud.
  5. Report to specialized regulators depending on the scam type.
  6. Secure compromised accounts and change passwords.
  7. Do not share OTPs, passwords, or remote access.
  8. Be careful with public posts.
  9. Beware of recovery scams.
  10. Organize your complaint with screenshots, receipts, URLs, and a timeline.

Conclusion

Reporting a scam website in the Philippines requires quick action, organized evidence, and the correct reporting channels. The victim should immediately stop sending money, preserve screenshots and transaction records, secure compromised accounts, and report the incident to banks, e-wallet providers, cybercrime authorities, law enforcement, platforms, and relevant regulators depending on the nature of the scam.

The most useful complaint is specific and evidence-based. It should include the website URL, screenshots, payment receipts, recipient account details, communications, and a clear timeline. While recovery of money is not always guaranteed, prompt reporting may help freeze funds, identify suspects, take down the website, prevent further victims, and support criminal or regulatory action.

A scam website should never be ignored. Even if the amount lost is small, reporting helps create a record, protect other people, and strengthen enforcement against online fraud.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login