A scam website can disappear in hours, but the money trail, screenshots, domain records, payment references, mobile numbers, and account details can still help Philippine authorities act. If you were tricked by a fake online store, phishing page, investment platform, job site, crypto site, or website pretending to be a bank, government agency, courier, or e-wallet, the safest approach is to secure your accounts first, preserve evidence, report the URL, and file the right complaint with the right agency.
This guide explains how to report a scam website in the Philippines, which laws may apply, what evidence to prepare, where to file, what timelines to expect, and the common mistakes that can weaken a cybercrime complaint.
What Counts as a Scam Website in the Philippines?
A scam website is any website used to deceive people into giving money, personal data, account access, or other property. It may look professional, use a “.com” domain, copy a real brand, display fake permits, or use testimonials and countdown timers to create urgency.
Common examples include:
- Fake online stores that accept payment but never deliver
- Phishing websites that imitate banks, GCash, Maya, PayPal, couriers, eGovPH, BIR, SSS, Pag-IBIG, PhilHealth, DFA, or immigration pages
- Fake investment platforms promising guaranteed daily income
- Crypto, forex, or “AI trading” sites that block withdrawals after deposits
- Job recruitment websites charging “processing fees”
- Romance or inheritance scam websites used to make the story look legitimate
- Fake lending, loan, or “credit repair” websites collecting IDs and selfies
- Fake ticketing, travel booking, hotel, or visa assistance pages
- Websites impersonating legitimate Philippine companies or government offices
Not every failed online transaction is automatically a criminal scam. A delayed delivery or refund dispute may start as a consumer complaint. But if the website used fake identities, false representations, forged permits, phishing pages, mule accounts, or repeated deception, it may become a criminal matter.
Immediate Steps Before You Report
Before filing a formal report, protect yourself first. Many scam websites are designed to keep extracting money through “verification fees,” “taxes,” “withdrawal charges,” or fake “recovery services.”
- Stop paying and stop communicating through the scammer’s links. Do not click new links they send.
- Call your bank, e-wallet, credit card issuer, or payment provider immediately. Ask them to block the card or account if compromised, freeze suspicious transactions if possible, and issue a reference number.
- Change passwords from a clean device. Prioritize email, online banking, e-wallets, social media, and any account where you reused the same password.
- Enable multi-factor authentication. Use app-based authentication where available.
- Do not delete chats, emails, SMS, transaction receipts, or browser history.
- Record the exact website URL. A screenshot of the homepage is helpful, but the full URL is better because scammers often use many similar domains.
- Take screenshots and screen recordings while the website is still online.
- Report quickly. Speed matters because banks, e-wallets, hosting providers, domain registrars, and platforms may have limited windows to preserve data or stop funds from moving further.
Philippine Laws That May Apply to Scam Websites
Several Philippine laws can apply at the same time, depending on how the scam worked.
| Law | Why It Matters |
|---|---|
| Republic Act No. 10175, Cybercrime Prevention Act of 2012 | Covers cybercrime offenses such as computer-related fraud, identity theft, illegal access, and crimes committed through information and communications technology. |
| Article 315 of the Revised Penal Code | Penalizes estafa or swindling, commonly used when a person is deceived into parting with money or property. |
| Republic Act No. 12010, Anti-Financial Account Scamming Act of 2024 | Applies to money mule activities and social engineering schemes involving bank accounts, e-wallets, credit cards, and other financial accounts. |
| Republic Act No. 8484, Access Devices Regulation Act of 1998 | May apply when credit cards, account numbers, access devices, or related information are fraudulently used. |
| Republic Act No. 10173, Data Privacy Act of 2012 | Relevant when the scam website unlawfully collects, uses, or exposes personal information, IDs, selfies, contact lists, or sensitive data. |
| Republic Act No. 11934, SIM Registration Act | Relevant when scam SMS, mobile numbers, or registered SIMs are used in the scheme. |
| Republic Act No. 8792, Electronic Commerce Act of 2000 | Recognizes electronic documents and data messages, which is important when preserving website records, emails, chats, and transaction confirmations. |
Estafa and Online Fraud
Many scam website cases are treated as estafa, which is fraud or swindling under Article 315 of the Revised Penal Code. In simple terms, estafa usually involves:
- A false representation or deceit;
- The victim relying on that deceit;
- The victim giving money, property, access, or some other value; and
- Damage or loss to the victim.
For example, if a website falsely claims to be an authorized seller, accepts payment, gives fake tracking numbers, then disappears, that may support an estafa complaint.
If the fraud was committed through a website, social media page, email, SMS, or online payment system, RA 10175 may also apply because the offense was committed through information and communications technology.
Computer-Related Fraud and Identity Theft
Under RA 10175, a scam website may involve computer-related fraud if there was unauthorized input, alteration, deletion, or interference with computer data or systems with fraudulent intent.
A phishing site may also involve computer-related identity theft if it intentionally acquires, uses, misuses, transfers, possesses, alters, or deletes identifying information belonging to another person without right.
This matters because phishing victims often do not “voluntarily” pay money. Instead, they are tricked into entering passwords, OTPs, card details, or e-wallet credentials on a fake page.
Financial Account Scamming Under RA 12010
RA 12010, the Anti-Financial Account Scamming Act, is especially important for scams involving banks, e-wallets, credit cards, payment apps, and “money mule” accounts.
The law covers, among others:
- Money muling, such as using, borrowing, renting, selling, lending, or opening financial accounts to receive or move scam proceeds;
- Social engineering schemes, where scammers use deception to obtain sensitive identifying information and gain unauthorized control over a financial account;
- Use of electronic communications such as SMS, calls, email, and messaging apps.
RA 12010 also allows financial institutions to temporarily hold funds subject of a disputed transaction for a period prescribed by the Bangko Sentral ng Pilipinas, not exceeding 30 calendar days, unless extended by a court. This is why victims should report to their bank or e-wallet immediately, not days later.
Where to Report a Scam Website in the Philippines
Use more than one reporting channel when appropriate. A report to a hotline may help stop ongoing harm, while a formal complaint with the PNP or NBI helps build a criminal case.
| Where to Report | Best For | What to Prepare |
|---|---|---|
| Cybercrime Investigation and Coordinating Center report page or Hotline 1326 through the Inter-Agency Response Center | Immediate reporting of online scams, phishing, fake websites, and cyber fraud | Scam URL, screenshots, phone numbers, account details, payment proof, short narrative |
| Scam Watch Pilipinas | Public-facing scam reporting guidance and 1326 information | Same as above |
| PNP Anti-Cybercrime Group | Formal criminal complaint, investigation, cybercrime case buildup | Complaint-affidavit, valid ID, evidence, transaction records |
| PNP ACG eComplaint portal | Initial online complaint or referral to the appropriate ACG unit | Digital copies of evidence and contact details |
| NBI Cybercrime Division assistance page | Formal cybercrime complaint or request for investigation | Sworn statements, affidavits, supporting documents, devices if relevant |
| Your bank, e-wallet, card issuer, or payment provider | Unauthorized transfers, card fraud, payment reversal requests, disputed transactions | Transaction reference number, date/time, amount, recipient account, screenshots |
| BSP Consumer Assistance Channels and Chatbot | Unresolved complaints against BSP-supervised banks, e-wallets, and financial institutions | Prior complaint to the bank/e-wallet, reference number, reply, supporting documents |
| SEC i-Message portal | Investment scams, fake corporations, unauthorized securities solicitation, Ponzi-style websites | Website URL, company name, names used, screenshots, payment proof, recruitment materials |
| DTI Consumer CARe System | Online seller complaints, non-delivery, deceptive sales practices, consumer disputes | Order confirmation, seller details, receipts, chats, demand/refund request |
| NPC formal complaint page | Misuse of personal information, IDs, selfies, sensitive data, privacy violations | Notarized complaint form, evidence, IDs, supporting documents |
| eGovPH official website and eGovPH app eReport feature | Reporting scam SMS, mobile numbers, fake government links, and online scam incidents | Screenshots, sender number, URL, date/time received |
| NTC text spam/spam report page | Scam SMS and spam text messages | Screenshot of SMS, sender number, link, date/time |
Step-by-Step Guide to Reporting a Scam Website
1. Preserve the Website Evidence
Do this before the scammer deletes the site.
Save:
- Exact URL, including “http” or “https,” subdomain, and page path
- Screenshots of the homepage, product page, login page, checkout page, payment instruction page, and contact page
- Screenshots showing fake permits, fake SEC/DTI registration claims, fake reviews, or fake celebrity endorsements
- Date and time when you accessed the website
- Any email address, mobile number, Telegram handle, WhatsApp number, Facebook page, or Viber number linked to the site
- Domain information if available from a WHOIS lookup
- Website source details only if you know how to collect them safely
For evidence, screenshots are useful, but they are not always enough by themselves. Preserve the original electronic messages, emails, receipts, and files whenever possible. Under the Electronic Commerce Act and the Rules on Electronic Evidence, electronic records can be used in legal proceedings if properly authenticated.
2. Preserve the Payment Trail
Money movement is often more useful than the website design.
Prepare a table like this:
| Detail | Example |
|---|---|
| Date and time paid | March 3, 2026, 8:42 PM |
| Amount | PHP 12,500 |
| Payment method | GCash / Maya / bank transfer / credit card / crypto |
| Sender account | Your account name or masked account number |
| Recipient name | Name displayed by app or bank |
| Recipient number/account | Mobile number, bank account number, wallet ID |
| Transaction reference | App reference number, receipt number, blockchain hash |
| Purpose stated by scammer | “Reservation fee,” “tax,” “activation,” “withdrawal fee” |
If you paid by bank or e-wallet, report to the financial institution immediately and ask for a case or ticket number. Under RA 12010, the timing of the dispute report can matter because financial institutions may be able to trace, hold, or coordinate verification of disputed funds depending on the circumstances and applicable BSP rules.
3. Report the Scam Website to CICC or Hotline 1326
The Cybercrime Investigation and Coordinating Center is a key government body for cybercrime coordination. For online scam incidents, the public-facing channel commonly promoted is Hotline 1326 through the Inter-Agency Response Center.
When reporting, give a short, factual summary:
- What website scammed you;
- How you found it;
- What it promised;
- What you paid or what information you entered;
- The payment or account details used;
- Whether your bank/e-wallet account was accessed;
- Whether the website is still active; and
- Whether other people may still be at risk.
Ask for a reference number or confirmation if available.
4. File a Formal Complaint with the PNP ACG or NBI Cybercrime Division
A hotline report is helpful, but if you lost money, had your identity stolen, or want a criminal investigation, you usually need a formal complaint.
You may go to:
- The PNP Anti-Cybercrime Group or its regional cybercrime units; or
- The NBI Cybercrime Division or Regional Cybercrime Centers.
The NBI’s citizen charter for cybercrime assistance indicates that a complainant may proceed to the Cybercrime Division, fill out the complaint sheet, and submit sworn statements, affidavits, supporting documents, and relevant devices for examination when needed. It also lists no government fee for the basic investigative assistance process.
In practice, expect the agency to ask for:
- A valid government ID;
- Complaint-affidavit or sworn statement;
- Printed and digital copies of evidence;
- Proof of ownership of the affected account, phone number, email, or device;
- Transaction records from the bank, e-wallet, or payment provider;
- Screenshots and URLs;
- Names, aliases, contact numbers, account numbers, and social media handles used by the scammer;
- A clear timeline of events.
5. Prepare a Complaint-Affidavit
A complaint-affidavit is a sworn written statement explaining what happened. It should be factual, chronological, and supported by attachments.
A good complaint-affidavit usually includes:
- Your full name, address, citizenship, contact details, and ID details.
- How you discovered the website.
- The exact URL and name used by the website.
- What representations the website or scammer made.
- Why you believed them at the time.
- What you paid or what personal data you submitted.
- The payment method, account details, and reference numbers.
- What happened after payment or submission of data.
- How you discovered it was a scam.
- What losses or damage you suffered.
- A list of attachments.
Avoid exaggerations. Do not guess the scammer’s real identity unless you have proof. It is fine to say “the person using the account name…” or “the website represented itself as…”
6. Report to the Platform, Hosting Provider, Browser, or Domain Registrar
Philippine law enforcement can investigate, but website takedown often also requires action from the platform, hosting provider, domain registrar, search engine, or social media company.
Depending on the scam, report the URL to:
- The website’s hosting provider;
- The domain registrar’s abuse department;
- Google Safe Browsing;
- Microsoft, Apple, or browser security reporting channels;
- Meta/Facebook, Instagram, TikTok, YouTube, Telegram, WhatsApp, or Viber if the site is promoted there;
- Shopee, Lazada, Carousell, Airbnb, Booking, or other marketplaces if their names or systems are involved.
This does not replace a police or NBI complaint, but it may reduce further victims.
7. Report to the Proper Regulator
Use the nature of the scam to choose the additional regulator.
| Type of Scam Website | Additional Office to Consider |
|---|---|
| Investment, crypto investment, forex, trading, guaranteed returns | SEC |
| Bank, credit card, e-wallet, unauthorized transfer | Bank/e-wallet first, then BSP if unresolved |
| Online seller, fake store, defective goods, non-delivery | DTI |
| Misuse of ID, selfie, sensitive personal information | NPC |
| Scam SMS, text link, spoofed mobile number | eGovPH eReport and NTC |
| Fake company using a registered business name | SEC or DTI, depending on registration type |
| Fake recruitment or overseas job processing | DMW/POEA-related channels may also be relevant |
| Fake government website | The impersonated agency plus CICC/PNP/NBI |
Documents and Evidence Checklist
Prepare both digital and printed copies when possible.
| Evidence | Why It Helps |
|---|---|
| Full URL of the scam website | Allows investigators and platforms to identify the exact site |
| Screenshots with date/time | Shows what the victim saw before the site disappears |
| Screen recording | Useful for showing website flow, fake login pages, or payment instructions |
| Chat logs | Shows false promises, instructions, threats, or admissions |
| Emails with full headers | Helps trace sender infrastructure |
| SMS screenshots | Shows sender number, link, and date/time |
| Payment receipts | Establishes loss and money trail |
| Bank/e-wallet transaction history | Helps trace recipient accounts |
| Recipient account name and number | Important for subpoena, inquiry, or bank coordination |
| Valid ID | Establishes complainant identity |
| Complaint-affidavit | Required for formal case buildup |
| Device used | May be examined if malware, account takeover, or phishing is involved |
| Demand/refund messages | Useful for showing non-delivery, refusal, or fraudulent conduct |
| Other victim statements | Helpful when showing a pattern or syndicate activity |
Practical Timelines and What to Expect
| Step | Typical Timing | Practical Reality |
|---|---|---|
| Bank/e-wallet fraud report | Same day, ideally within hours | Faster reporting gives a better chance of holding or tracing funds |
| CICC/1326 report | Same day | Useful for routing, guidance, and scam reporting, but not always a full criminal complaint |
| PNP ACG/NBI complaint intake | Same day to several days, depending on office and completeness | You may be asked to return with printed evidence, affidavits, or additional documents |
| Initial case evaluation | Days to weeks | Investigators assess whether evidence supports a cybercrime, estafa, identity theft, or other offense |
| Requests to banks, platforms, or providers | Weeks or longer | Some records require formal legal process, preservation, subpoenas, or coordination |
| Prosecutor’s preliminary investigation | Several months, depending on complexity | Respondents may be subpoenaed if identified |
| Court case | Often lengthy | Online scam cases can take time, especially if suspects use fake identities or foreign infrastructure |
A common frustration is that victims want an instant takedown and refund. In reality, authorities often need to preserve evidence, identify the account holder, trace funds, coordinate with platforms or banks, and determine whether the named account holder is the real scammer, a mule, or an identity theft victim.
If the Scam Website Is Based Outside the Philippines
Many scam websites use foreign domains, overseas hosting, VPNs, foreign payment processors, or crypto wallets. That does not automatically mean Philippine authorities cannot act.
RA 10175 gives Philippine courts jurisdiction over cybercrime violations in several situations, including where any element was committed in the Philippines, where a computer system used is wholly or partly situated in the Philippines, where damage was caused to a person in the Philippines, or where a Filipino national committed the violation regardless of place of commission.
For foreign-hosted websites, enforcement may be slower because authorities may need:
- Preservation requests;
- Mutual legal assistance;
- Coordination with foreign platforms;
- Domain registrar or hosting provider cooperation;
- Bank or crypto exchange cooperation;
- International law enforcement channels.
For foreigners victimized by a Philippine-based scam website, or Filipinos abroad who were scammed by a website targeting the Philippines, a complaint may still be possible. If the complainant is abroad, Philippine authorities may require documents executed before a Philippine embassy or consulate, or notarized abroad and apostilled if the country is part of the Apostille Convention. A local representative may also need a Special Power of Attorney for follow-ups, but the victim’s own sworn statement remains important.
Common Mistakes When Reporting Scam Websites
Reporting Only to Facebook or the Website Host
Platform reports can remove pages, but they do not automatically create a Philippine criminal case. If money was lost or identity data was stolen, file with PNP ACG or NBI as well.
Deleting Messages Out of Anger or Embarrassment
Do not delete chats, emails, call logs, SMS, or receipts. Even embarrassing conversations can be important evidence.
Sending More Money to “Unlock” Withdrawals
Investment and crypto scam websites often show fake profits, then demand taxes, clearance fees, AMLA fees, verification fees, or wallet activation fees. These are usually part of the same scam.
Trusting “Recovery Agents”
Many victims are scammed twice. Fake recovery agents claim they can hack the scammer, retrieve crypto, reverse bank transfers, or bribe officials. They usually ask for advance fees and disappear.
Posting Accusations Without Evidence
Public warnings can help others, but naming private persons without proof may create separate legal risk. Keep reports factual: website URL, account names used, screenshots, and the fact that you filed a report.
Relying Only on a Barangay Blotter
A barangay blotter can document that you reported an incident, but barangays do not investigate cybercrime infrastructure. For scam websites, go to PNP ACG, NBI Cybercrime Division, CICC, and the relevant regulator.
Waiting Too Long
Banks, e-wallets, platforms, telecoms, and hosting providers may retain data only for limited periods or may require prompt action. Report immediately.
Special Situations
The Website Used a Bank or E-Wallet Account
Report first to the bank or e-wallet provider. Ask for:
- Blocking or securing your own account;
- Dispute case number;
- Recipient account details shown in your receipt;
- Written acknowledgment of your fraud report;
- Instructions for affidavits or police reports required by the institution.
If the bank or e-wallet response is unresolved or inadequate, escalate through BSP’s Consumer Assistance Mechanism after first reporting to the financial institution.
The Website Pretended to Be a Government Agency
Report to CICC/1326, PNP ACG or NBI, and the real agency being impersonated. Fake government pages can cause broader harm because victims may submit IDs, selfies, tax numbers, passport details, or national ID information.
Use only official government domains and verified app stores. Be careful with sponsored search results and links sent through SMS.
The Website Collected Your ID, Selfie, or Personal Data
If you uploaded IDs, selfies, signatures, billing statements, or personal data, monitor for identity theft. Consider reporting to the NPC if there was unlawful collection, use, disclosure, or continued misuse of personal information.
The NPC’s formal complaint process generally requires a complaint in the proper format, notarization, and submission with supporting evidence.
The Scam Involves Investment Solicitations
If the website promises guaranteed income, referral commissions, passive returns, crypto trading profits, or “staking” returns, report to the SEC. Include screenshots of the investment offer, referral system, group chats, payment instructions, and names of promoters.
Do not rely only on a claimed SEC registration number. A corporation may be registered with the SEC but still lack authority to solicit investments from the public.
The Scam Started Through SMS
Save the SMS with the sender number, link, and timestamp. Use the eGovPH eReport feature or NTC reporting channels for scam text messages. If you clicked the link and lost money or account access, also report to your bank/e-wallet and to PNP ACG or NBI.
Frequently Asked Questions
Can I report a scam website even if I did not lose money?
Yes. If the website is phishing, impersonating a real company or government agency, collecting personal data, or attempting to scam the public, you can report it. Make clear that you are reporting an attempted scam or suspicious website, not a completed loss.
Should I report to PNP or NBI?
Either may handle cybercrime complaints. The PNP Anti-Cybercrime Group and the NBI Cybercrime Division both investigate cybercrime matters. Many victims choose the office nearest to them or the office that can act fastest. For serious losses, organized schemes, or identity theft, prepare a complete evidence packet before going.
Is calling 1326 enough?
Calling 1326 is a useful first step for cyber fraud reporting and guidance, especially if the scam is ongoing. But if you lost money, need a police report, or want a criminal case pursued, you should also file a formal complaint with PNP ACG or NBI and report to your bank or e-wallet.
Can I get my money back after reporting a scam website?
Possibly, but it is not guaranteed. Recovery depends on how fast you reported, whether the funds are still in the recipient account, whether the financial institution can temporarily hold disputed funds, and whether the recipient account can be identified. Report to your bank or e-wallet immediately.
What if the scammer used a fake name?
That is common. Investigators may use payment records, account registration data, IP logs, device information, telecom records, platform records, or other evidence to identify suspects. Do not assume the displayed account name is the mastermind; it may belong to a mule or identity theft victim.
Can I sue the owner of the bank account or e-wallet that received the money?
Possibly, but the account holder’s role must be established. Under RA 12010, money mule activities are punishable, but some account holders may claim their accounts were stolen, rented, or misused. Evidence matters. File a proper complaint and let investigators determine the person’s role.
Do I need a lawyer to report a scam website?
You can report to CICC, PNP ACG, NBI, your bank, e-wallet, SEC, DTI, BSP, NPC, or NTC without a lawyer. A lawyer may be helpful for drafting affidavits, organizing evidence, following up with prosecutors, or pursuing civil recovery, especially for large losses or business-related scams.
Can foreigners report scam websites in the Philippines?
Yes, especially if the scammer, website operator, payment account, victim, or damage has a Philippine connection. Foreign complainants abroad may need properly notarized, consularized, or apostilled documents, depending on where the affidavit or authorization is executed.
What if the scam website is already gone?
You can still report it. Provide screenshots, cached pages if available, payment records, chats, emails, phone numbers, account names, and transaction references. A disappeared website does not erase the payment trail.
Should I post the scammer online to warn others?
You may warn others by sharing factual information, such as the URL, screenshots, and that you filed a report. Avoid unsupported accusations against private individuals unless you have evidence. Public shaming can create separate legal issues and may alert scammers to destroy evidence.
Key Takeaways
- Report a scam website quickly because websites, accounts, and funds can disappear fast.
- Secure your bank, e-wallet, email, and social media accounts before anything else.
- Preserve the exact URL, screenshots, chats, emails, SMS, receipts, and transaction references.
- Use CICC/1326 for immediate cyber fraud reporting, but file a formal complaint with PNP ACG or NBI for criminal investigation.
- Report financial transactions to your bank or e-wallet immediately; escalate unresolved complaints to BSP when appropriate.
- Report investment scams to SEC, consumer seller disputes to DTI, data misuse to NPC, and scam SMS to eGovPH/NTC.
- A barangay blotter is not a substitute for a cybercrime complaint.
- Do not pay “withdrawal fees,” “taxes,” or “recovery agents” after being scammed.
- Foreign-hosted websites can still be reported if there is Philippine damage, Philippine victims, Filipino offenders, or Philippine-linked systems or accounts.