How to Report Advance Fee Loan Scams in the Philippines

I. Introduction

Advance fee loan scams are a common form of financial fraud in the Philippines. They target people who urgently need money and promise fast loan approval in exchange for an upfront payment. The scammer may call the payment a processing fee, verification fee, insurance fee, notarial fee, collateral fee, release fee, anti-money laundering fee, documentary stamp fee, credit score repair fee, or first-month payment. Once the victim pays, the supposed lender either disappears, demands more fees, or refuses to release the loan.

These scams are especially harmful because they prey on people in financial distress. Victims are often job seekers, small business owners, minimum wage earners, OFWs, students, pensioners, and borrowers already struggling with debts. Many feel embarrassed and do not report the scam. That silence allows scammers to continue.

The central rule is simple: a legitimate lender generally does not require a borrower to pay repeated upfront “release” fees before receiving a loan. Fees, if lawful and properly disclosed, are usually deducted from loan proceeds or included in the loan computation, not collected through personal e-wallet transfers to unknown individuals before release.

II. What Is an Advance Fee Loan Scam?

An advance fee loan scam is a fraudulent scheme where a person or entity promises a loan but requires the borrower to pay money first. The promised loan is never released, or the scammer keeps inventing additional charges.

The scheme usually has three elements:

  1. Promise of a loan The scammer advertises or offers easy approval, often with minimal requirements.

  2. Demand for advance payment The victim is told to pay a fee before loan release.

  3. Failure to release the loan After payment, the scammer disappears, delays, blocks the victim, or demands more money.

The scam may be committed by fake lending companies, fake online lending apps, impersonators of real banks, fake employees of legitimate institutions, social media pages, text-message senders, or organized cybercrime groups.

III. Common Names Used for Advance Fees

Scammers rarely call the payment a “scam fee.” They use official-sounding names, such as:

  • processing fee;
  • loan release fee;
  • activation fee;
  • verification fee;
  • account validation fee;
  • insurance fee;
  • collateral fee;
  • security deposit;
  • notarial fee;
  • documentary stamp fee;
  • bank transfer fee;
  • credit investigation fee;
  • credit score repair fee;
  • anti-money laundering fee;
  • tax clearance fee;
  • BIR fee;
  • AMLC clearance fee;
  • BSP clearance fee;
  • SEC registration fee;
  • attorney’s fee;
  • courier fee;
  • loan unlocking fee;
  • penalty for wrong account number;
  • correction fee;
  • first amortization;
  • advance monthly payment.

Some of these terms may exist in legitimate finance, but in scams they are used as excuses to extract money before loan release.

IV. Common Red Flags

A borrower should be suspicious if the supposed lender:

  1. guarantees approval despite no income verification;
  2. offers very large loans with no collateral or credit check;
  3. communicates only through Facebook, Messenger, Telegram, Viber, WhatsApp, or text;
  4. asks for payment to a personal GCash, Maya, bank, or crypto account;
  5. refuses to provide a physical office address;
  6. uses a fake or copied SEC certificate;
  7. claims to be connected with a bank but uses a personal email address;
  8. demands repeated fees after each payment;
  9. pressures the victim with deadlines;
  10. threatens legal action before any loan is released;
  11. asks for OTPs, passwords, or remote access;
  12. asks for ID selfies and then uses them for blackmail;
  13. says the loan is approved but “locked” until payment;
  14. asks the borrower to pay because of a “wrong bank account number”;
  15. refuses video call or official verification;
  16. uses poor grammar, fake IDs, or edited documents;
  17. sends a fake loan agreement with no verifiable company details;
  18. impersonates government agencies or regulators.

A common scam pattern is this: after the victim pays the first fee, the scammer says there was an error, then demands another payment. This continues until the victim stops paying.

V. Common Platforms Used by Scammers

Advance fee loan scams commonly occur through:

  • Facebook pages and groups;
  • Messenger chats;
  • TikTok ads;
  • Instagram accounts;
  • Telegram channels;
  • Viber groups;
  • WhatsApp messages;
  • SMS blast messages;
  • fake websites;
  • fake loan apps;
  • email;
  • online classified ads;
  • impersonation of bank pages;
  • impersonation of online lending apps;
  • fake endorsements using celebrities or public officials.

Scammers often change names and pages quickly. A page may use stolen logos of legitimate banks, government agencies, or lending companies.

VI. Difference Between a Scam and a High-Interest Loan

Not every unfair or expensive loan is an advance fee scam. Some lenders actually release loans but charge excessive interest, hidden fees, or abusive penalties. That may involve usury-related policy issues, unfair debt collection, truth-in-lending violations, data privacy violations, or regulatory complaints.

An advance fee loan scam is different because the supposed lender’s main purpose is to collect money upfront and never release the loan.

However, the two may overlap. A fraudulent lender may both collect advance fees and misuse the borrower’s personal data.

VII. Legal Character of Advance Fee Loan Scams

Advance fee loan scams may involve several legal violations under Philippine law, depending on the facts.

Possible legal theories include:

  • estafa or swindling;
  • cybercrime-related fraud;
  • identity theft;
  • computer-related fraud;
  • use of fictitious name or false pretenses;
  • falsification of documents;
  • unauthorized use of business names;
  • illegal lending or unregistered lending operations;
  • violation of lending company regulations;
  • data privacy violations;
  • harassment or unfair debt collection;
  • unauthorized access or phishing;
  • money mule activity;
  • conspiracy or syndicated fraud.

The correct legal classification depends on evidence: what was promised, how the payment was obtained, who received the money, what documents were used, and whether the communication was done through digital systems.

VIII. Estafa

The most common criminal concept is estafa, or swindling. In simple terms, estafa may arise when the scammer uses deceit or false pretenses to induce the victim to give money, causing damage.

In an advance fee loan scam, the deceit may be:

  • pretending to be a legitimate lender;
  • falsely claiming the loan is approved;
  • falsely promising release after payment;
  • using fake documents;
  • using fake identities;
  • claiming false fees are required by law;
  • pretending to be connected with banks or government agencies.

The damage is the money paid by the victim and, in some cases, additional losses caused by reliance on the fake loan.

IX. Cybercrime Aspect

If the scam was committed through the internet, mobile phone, social media, messaging apps, online payment systems, email, fake websites, or digital platforms, cybercrime laws may become relevant.

The use of digital technology may make the offense a cyber-enabled fraud. This matters because complaints may be filed with cybercrime units and digital evidence must be preserved properly.

Examples include:

  • fake Facebook loan page;
  • Messenger chat demanding fees;
  • SMS link to fake loan application;
  • email using a fake bank domain;
  • Telegram group offering loans;
  • online form collecting IDs;
  • GCash or Maya transfer after online instruction;
  • fake loan app requesting permissions.

X. Data Privacy and Identity Theft Issues

Advance fee loan scams often involve personal data. Victims may be asked to submit:

  • government ID;
  • selfie holding ID;
  • birthdate;
  • address;
  • employer details;
  • payslip;
  • bank account number;
  • e-wallet number;
  • contact list;
  • emergency contacts;
  • signature specimen;
  • proof of billing;
  • SSS, GSIS, TIN, PhilHealth, or Pag-IBIG numbers.

Scammers may use this information for:

  • identity theft;
  • fake accounts;
  • SIM registration abuse;
  • harassment;
  • blackmail;
  • unauthorized loan applications;
  • phishing;
  • social engineering;
  • selling data to other scammers;
  • threatening the victim’s contacts.

If personal data was collected or misused, the victim may consider reporting not only the financial scam but also the data privacy violation.

XI. Immediate Steps After Discovering the Scam

A victim should act quickly.

1. Stop sending money

Do not pay additional “release,” “correction,” “unlocking,” or “penalty” fees. Scammers often invent new fees to keep the victim paying.

2. Preserve evidence

Do not delete chats, call logs, payment confirmations, screenshots, emails, or social media links.

3. Take screenshots immediately

Scammers may delete accounts, rename pages, unsend messages, or block the victim.

4. Report the payment transaction

Contact the bank, GCash, Maya, remittance center, or payment provider immediately. Ask whether the transaction can be held, reversed, traced, or flagged.

5. Report the account or page

Report the fake account to the platform, but preserve evidence first before the page disappears.

6. Secure personal accounts

Change passwords, enable two-factor authentication, and monitor bank and e-wallet accounts.

7. Watch for identity theft

If IDs and selfies were submitted, monitor for unauthorized accounts, loans, or messages to contacts.

8. File reports with proper authorities

Report to law enforcement, regulators, and relevant financial platforms.

XII. Evidence to Preserve

Evidence is critical. The victim should gather:

  • full name used by scammer;
  • social media profile links;
  • page URLs;
  • usernames and handles;
  • phone numbers;
  • email addresses;
  • website URLs;
  • screenshots of advertisements;
  • screenshots of chat conversations;
  • voice messages;
  • call logs;
  • payment instructions;
  • account names and numbers;
  • GCash or Maya numbers;
  • bank account details;
  • QR codes;
  • transaction receipts;
  • reference numbers;
  • loan agreement or fake contract;
  • fake IDs or certificates sent by scammer;
  • screenshots of approval notice;
  • screenshots of threats or demands;
  • proof that no loan was released;
  • victim’s bank or e-wallet statement;
  • timeline of events;
  • list of amounts paid and dates.

The victim should save both screenshots and original files where possible. Screenshots should show date, time, sender identity, and full context.

XIII. How to Make a Timeline

A clear timeline helps police, prosecutors, banks, and regulators understand the case.

Example format:

Date Event Evidence
January 5 Saw Facebook ad for loan Screenshot of ad
January 6 Messaged page and submitted documents Messenger screenshots
January 7 Received approval for ₱100,000 loan Screenshot of approval
January 7 Paid ₱2,500 processing fee to GCash number GCash receipt
January 8 Scammer demanded ₱5,000 release fee Screenshot
January 8 Paid ₱5,000 Receipt
January 9 No loan released; scammer blocked victim Screenshot/profile unavailable

This makes the complaint easier to evaluate.

XIV. Where to Report in the Philippines

Victims may report to several offices depending on the facts.

A. Philippine National Police Anti-Cybercrime Group

If the scam occurred online, through social media, SMS, email, or digital payment channels, the PNP Anti-Cybercrime Group is a natural reporting office.

Victims should bring printed and digital evidence. The complaint may be treated as cyber-enabled fraud or online estafa.

B. National Bureau of Investigation Cybercrime Division

The NBI Cybercrime Division may also receive complaints involving online scams, identity theft, phishing, fake accounts, and cyber fraud.

Victims may prepare a complaint-affidavit and evidence packet.

C. Local police station

A victim may also report to the nearest police station, especially if immediate blotter entry is needed. The local police may refer the matter to a cybercrime unit if digital evidence is involved.

D. Prosecutor’s Office

For criminal prosecution, a complaint may be filed for preliminary investigation before the prosecutor’s office, supported by affidavits and evidence.

E. Securities and Exchange Commission

If the scammer pretends to be a lending company, financing company, online lending platform, investment firm, or corporation, the SEC may be relevant. The SEC can verify registration and act on unauthorized lending or misuse of corporate registration.

F. Bangko Sentral ng Pilipinas

If a bank, e-money issuer, payment provider, or supervised financial institution is involved, or if the scammer impersonated a BSP-supervised entity, a report to the BSP consumer assistance channel may be appropriate.

G. National Privacy Commission

If personal data was collected, misused, leaked, threatened, or used for harassment, the victim may complain to the National Privacy Commission.

H. Department of Trade and Industry

If the scam involved a business name, online seller-like activity, deceptive sales practice, or consumer complaint angle, DTI may be considered, although criminal fraud is usually better handled by law enforcement.

I. Platform reporting channels

The victim should also report the account, page, group, ad, website, e-wallet, or bank account to the platform or provider.

XV. Reporting to Banks and E-Wallet Providers

If the victim sent money through a bank, GCash, Maya, remittance center, or other payment provider, report immediately.

The report should include:

  • transaction reference number;
  • date and time of transfer;
  • amount;
  • sender account;
  • recipient name;
  • recipient account number or mobile number;
  • screenshots of scam instructions;
  • police report or blotter, if available;
  • request to freeze, investigate, or flag the recipient account.

Banks and e-wallet providers may not always reverse completed transfers, especially if the funds were already withdrawn. But early reporting may help freeze remaining funds, identify account holders, and support investigation.

XVI. Chargeback and Reversal Issues

Recovery depends on the payment method.

Bank transfer

Bank transfers are often difficult to reverse once completed. Immediate reporting is essential.

E-wallet transfer

E-wallet providers may investigate, but reversal is not guaranteed. Funds may have already been moved.

Credit card payment

If payment was made by credit card, a chargeback may be possible depending on the card network rules and proof of fraud.

Remittance center

If the money has not yet been claimed, cancellation may be possible. If already claimed, recovery becomes harder.

Crypto transfer

Crypto transfers are extremely difficult to reverse. The victim should still preserve wallet addresses and transaction hashes for investigation.

XVII. Reporting to the SEC

Many advance fee loan scams pretend to be lending companies. A legitimate lending company in the Philippines must comply with registration and regulatory requirements.

The victim may report to the SEC if:

  • the supposed lender claims to be a corporation;
  • it uses “Lending,” “Financing,” “Credit,” or similar words;
  • it operates an online lending app;
  • it shows a supposed SEC certificate;
  • it uses a corporate name;
  • it solicits borrowers online;
  • it collects fees without releasing loans;
  • it impersonates a real registered company.

Important: the mere existence of an SEC registration number does not prove that the person contacting the victim is legitimate. Scammers often copy the name and registration details of real companies.

The victim should compare the contact details used by the scammer with the official contact details of the real company.

XVIII. Reporting to the BSP

The Bangko Sentral ng Pilipinas may be relevant when:

  • the scammer impersonates a bank;
  • the scammer uses a bank-like name;
  • a BSP-supervised institution is involved;
  • an e-money issuer or payment provider needs to investigate;
  • the victim needs consumer assistance involving financial service providers;
  • the scammer falsely claims BSP approval, clearance, or insurance.

The BSP generally does not approve individual consumer loans from random online pages and does not require borrowers to pay “BSP fees” for loan release. Any claim that the BSP requires a fee before a private loan is released is a major red flag.

XIX. Reporting to the National Privacy Commission

Report to the National Privacy Commission if:

  • the scammer collected IDs and selfies;
  • the scammer threatens to post personal information;
  • the scammer contacted the victim’s phone contacts;
  • the scammer used the victim’s data to harass relatives;
  • the scammer created fake accounts using the victim’s identity;
  • the scammer disclosed personal data online;
  • a loan app accessed contacts or photos without proper authority;
  • the victim’s personal data is being used for unauthorized loans.

The complaint should include screenshots, links, phone numbers, proof of data submitted, and proof of misuse.

XX. Reporting to Social Media and Messaging Platforms

The victim should report the scam page, account, or group. Before reporting, take screenshots and copy URLs.

Useful evidence includes:

  • profile URL;
  • page URL;
  • group URL;
  • ad screenshot;
  • username;
  • display name;
  • profile photo;
  • conversation screenshots;
  • payment details posted;
  • names of admins;
  • date the page was created, if visible.

Platform reporting may remove the page, but law enforcement still needs preserved evidence.

XXI. Filing a Police Blotter

A police blotter is not the same as a full criminal case, but it creates an official record. It may be useful when reporting to banks, e-wallet providers, employers, regulators, or platforms.

The blotter should include:

  • victim’s name;
  • date and time of incident;
  • amount lost;
  • mode of communication;
  • payment account used;
  • suspect’s name or alias;
  • brief facts;
  • evidence presented.

The victim should request a copy or certification if needed.

XXII. Complaint-Affidavit

For criminal action, the victim may need a complaint-affidavit. This is a sworn statement narrating facts and attaching evidence.

A strong complaint-affidavit should include:

  1. identity of complainant;
  2. how the complainant encountered the loan offer;
  3. representations made by the scammer;
  4. reason the complainant believed the scammer;
  5. amounts paid;
  6. payment details;
  7. failure to release loan;
  8. subsequent demands or disappearance;
  9. damage suffered;
  10. evidence attached.

The affidavit should be factual, chronological, and specific.

XXIII. Sample Complaint Narrative

A victim may state:

On [date], I saw an advertisement on Facebook offering fast personal loans under the name [page/company name]. I messaged the page and was told by a person using the name [name] that I was approved for a loan of ₱[amount]. I was instructed to pay ₱[amount] as a processing fee before the loan could be released.

Relying on this representation, I transferred ₱[amount] to [GCash/Maya/bank account name and number] on [date], with reference number [number]. After payment, I was told to pay additional fees called [name of fees]. I paid a total of ₱[total amount]. Despite these payments, no loan was released. The person later stopped responding/blocked me/deleted the page.

I believe I was deceived into paying money through false representations that a loan had been approved and would be released after payment. Attached are screenshots of the advertisement, conversations, payment receipts, account details, and proof that no loan was received.

XXIV. Sample Demand and Preservation Letter to Payment Provider

A victim may send:

I am reporting a fraudulent transaction involving an advance fee loan scam. On [date/time], I transferred ₱[amount] to [recipient name/account/number] with reference number [reference]. The recipient represented that the payment was required for release of an approved loan, but no loan was released and the recipient has stopped responding.

I request that your office immediately investigate, preserve account records, flag or freeze the recipient account if still possible, and provide guidance on the documents needed for further action. Attached are my transaction receipt, screenshots of the scam messages, and identification documents.

XXV. Sample Report to SEC or Regulator

A victim may write:

I am reporting an entity using the name [name] that offers online loans and collects advance fees before loan release. The entity represented itself as a lending company and sent supposed loan approval documents. I was required to pay [amount] to [account details], but no loan was released.

I request verification of whether this entity is registered and authorized to operate as a lending or financing company, and appropriate action if it is unauthorized, impersonating a registered company, or engaging in fraudulent lending practices. Attached are screenshots, payment receipts, chat records, and documents sent by the entity.

XXVI. If the Scammer Impersonated a Real Company

Many scammers copy the name, logo, SEC registration, address, or employee IDs of legitimate companies.

If this happens:

  1. Contact the real company through official channels.
  2. Ask whether the person or page is authorized.
  3. Send the company screenshots so it can issue warnings.
  4. Include impersonation in your complaint.
  5. Do not rely on contact details provided by the scammer.
  6. Search official directories, bank websites, SEC records, or verified pages when verifying.

The real company may also file its own complaint for impersonation and brand misuse.

XXVII. If the Victim Sent IDs and Selfies

If the victim submitted IDs, selfies, signatures, or personal documents:

  1. Save proof of what was sent.
  2. Report possible identity theft.
  3. Monitor bank and e-wallet accounts.
  4. Warn close contacts not to respond to suspicious messages.
  5. Consider replacing compromised IDs where possible.
  6. Watch for SIM registration or account misuse.
  7. Report fake accounts using the victim’s name or photos.
  8. Be alert for follow-up scams claiming to recover the money.

The victim should not panic, but should act quickly.

XXVIII. If the Scammer Has the Victim’s Contacts

Some fake loan apps or forms may collect contact lists. Scammers may threaten to shame the victim by messaging relatives, friends, or employer.

The victim should:

  • revoke app permissions;
  • uninstall suspicious apps;
  • change passwords;
  • warn contacts;
  • screenshot threats;
  • report harassment;
  • file a data privacy complaint if applicable;
  • report to law enforcement if threats are serious.

If the scammer sends defamatory messages, threats, or private information to contacts, preserve screenshots from recipients as well.

XXIX. If the Victim Installed a Loan App

Some scam loans operate through apps. The app may request permissions to access contacts, photos, camera, microphone, SMS, storage, or location.

Steps:

  1. Take screenshots of the app page and permissions.
  2. Save the APK or app details if available.
  3. Revoke permissions.
  4. Uninstall the app.
  5. Change passwords.
  6. Monitor accounts.
  7. Report the app to the app store.
  8. Report to cybercrime authorities and regulators.
  9. Tell contacts to ignore harassment messages.

If the app is an online lending app, the SEC and privacy authorities may be relevant.

XXX. If the Scammer Demands More Money

Do not pay. Additional payments rarely solve anything. Scammers often say:

  • “Your account number was wrong.”
  • “The loan was frozen.”
  • “You need AMLC clearance.”
  • “You must pay tax first.”
  • “You need to unlock the transfer.”
  • “Your credit score is too low.”
  • “Pay penalty or we will sue you.”
  • “Your loan is already in the system.”
  • “You will be arrested if you do not pay.”

These are pressure tactics. Preserve the messages and include them in the complaint.

XXXI. If the Scammer Threatens Legal Action

A scammer may threaten to file a case, send police, report the victim to NBI, or blacklist the victim. If no loan was released and the victim only refused to pay more fake fees, such threats are usually intimidation.

The victim should:

  • not argue emotionally;
  • screenshot threats;
  • stop further payments;
  • block only after preserving evidence;
  • report threats to authorities;
  • inform family members if necessary.

If threats involve physical harm, extortion, or publication of private information, treat them seriously and report promptly.

XXXII. If the Victim Gave an OTP or Password

If the victim gave an OTP, password, PIN, or remote access:

  1. Contact the bank or e-wallet immediately.
  2. Change passwords and PINs.
  3. Disable compromised devices or sessions.
  4. Check recent transactions.
  5. Freeze cards if needed.
  6. File unauthorized transaction reports.
  7. Preserve messages requesting OTP.
  8. Report to cybercrime authorities.

A legitimate lender, bank, regulator, or payment provider should not ask for OTPs or passwords.

XXXIII. If the Victim Used a Borrowed Account to Pay

Sometimes victims send money using a relative’s e-wallet or bank account. The account owner should also help report because the payment provider may require the sender’s account holder to file the transaction dispute.

The complaint should explain who sent the money and why.

XXXIV. If the Recipient Account Is Under Another Victim’s Name

Scammers may use money mules. The account name receiving the money may belong to:

  • a recruited mule;
  • another scam victim;
  • a stolen account;
  • a fake identity;
  • a person who sold or rented an e-wallet;
  • a hacked account.

The victim should report the account details but avoid making unsupported public accusations against the account holder without investigation.

XXXV. Can the Money Be Recovered?

Recovery is possible but not guaranteed. It depends on:

  • how quickly the victim reports;
  • whether funds remain in the recipient account;
  • whether the recipient account is verified;
  • whether law enforcement acts quickly;
  • whether the scammer can be identified;
  • whether the payment channel can freeze funds;
  • whether the victim used credit card or reversible payment;
  • whether the scammer is in the Philippines;
  • whether multiple victims report the same group.

Even if recovery is uncertain, reporting is still important to stop further scams and build a case.

XXXVI. Should the Victim Post the Scammer Online?

Public warnings can help others, but they carry risks. The victim should avoid posting unverified personal accusations, private data, or account numbers without caution. Public posts may expose the victim to defamation counterclaims, privacy issues, or harassment.

Safer approach:

  • report to authorities;
  • report to platforms;
  • warn friends generally;
  • share official advisories;
  • avoid doxxing;
  • do not alter screenshots;
  • do not threaten violence.

If posting, keep it factual and avoid unsupported conclusions against persons whose identities are not confirmed.

XXXVII. Reporting Multiple Scammers or Linked Accounts

If several accounts are involved, organize them.

Create a table:

Role Name/Alias Platform Account/Number Evidence
Loan agent “Maria Santos” Facebook URL Chat screenshots
Payment receiver “Juan D.” GCash 09xx Receipt
Supervisor “Atty. Reyes” Telegram username Demand messages
Fake company “Fast Loan PH” Website URL Screenshot

This helps investigators see the network.

XXXVIII. If There Are Multiple Victims

If several victims were scammed by the same page or group, they may coordinate, but each should preserve individual evidence and file individual statements. Group complaints can show pattern, but each victim must prove their own payment and loss.

A group may prepare:

  • list of complainants;
  • common scam page;
  • common account numbers;
  • total amount lost;
  • screenshots from each victim;
  • individual affidavits.

XXXIX. Prescription Period and Delay

Victims should report as soon as possible. Delay can make recovery harder because scammers move funds, delete accounts, and change identities.

Criminal prescription rules depend on the offense and penalty, but practical urgency is more important. For bank or e-wallet disputes, internal reporting deadlines may be short.

XL. What Not to Do

A victim should avoid:

  • paying more fees;
  • sending more IDs;
  • giving OTPs;
  • downloading remote access apps;
  • confronting suspects physically;
  • threatening violence;
  • deleting chats;
  • editing screenshots;
  • relying on “recovery agents” who ask for upfront fees;
  • posting sensitive personal data online;
  • using fake documents to “fight back”;
  • lying in the complaint;
  • assuming nothing can be done.

XLI. Recovery Scams

After reporting or posting about the scam, victims may be approached by “hackers,” “agents,” “lawyers,” or “cyber recovery experts” claiming they can recover the money for an upfront fee.

This is often another scam. Red flags include:

  • guaranteed recovery;
  • request for advance payment;
  • no verifiable office;
  • anonymous Telegram account;
  • demand for bank credentials;
  • request for OTP;
  • claim of special access to police, NBI, GCash, or banks;
  • promise to hack the scammer.

Do not pay a second scammer to recover money from the first scammer.

XLII. Role of Lawyers

A lawyer may help by:

  • preparing complaint-affidavit;
  • organizing evidence;
  • identifying proper charges;
  • sending preservation letters;
  • coordinating with banks or platforms;
  • filing civil claims;
  • representing the victim in preliminary investigation;
  • advising on privacy or defamation risks;
  • assisting if the victim is also harassed or blackmailed.

For small losses, a victim may still report directly to police, cybercrime units, banks, e-wallets, and regulators without a lawyer.

XLIII. Civil Action

Aside from criminal complaint, the victim may consider civil action to recover money. However, civil action is only practical if the scammer or account holder can be identified and has assets.

Possible civil remedies include recovery of money, damages, attorney’s fees, and costs. In many scam cases, the biggest challenge is identifying and locating the real perpetrator.

XLIV. Small Claims

If the identity of the person who received the money is known and the claim is for a sum of money within the small claims threshold, a small claims case may be considered. However, small claims may not be effective against fake identities, money mules, or unknown scammers.

Small claims is civil, not criminal. It may help recover money but does not impose criminal punishment.

XLV. Employer, Barangay, or Community Assistance

Victims sometimes need documents for leave, financial assistance, or community mediation. A police blotter or complaint receipt may help.

Barangay proceedings may not be appropriate for online scammers who are unknown, outside the barangay, or criminally organized. But barangay assistance may help if the suspect is personally known and lives in the same community.

XLVI. If the Scam Involves an OFW or Person Abroad

If the victim is abroad, the victim may:

  • preserve digital evidence;
  • report to Philippine cybercrime authorities online or through representatives;
  • execute an affidavit before a Philippine Embassy or Consulate;
  • authorize a representative in the Philippines;
  • report to the payment provider;
  • report to the platform;
  • coordinate with local police abroad if the scammer is also abroad.

The victim should keep Philippine phone numbers and accounts active if needed for investigation.

XLVII. If the Scammer Is Outside the Philippines

Some advance fee loan scams are operated from outside the Philippines. Reporting is still worthwhile, but investigation may require coordination across jurisdictions.

The victim should preserve:

  • international numbers;
  • IP-related evidence if available;
  • website domains;
  • email headers;
  • crypto wallet addresses;
  • foreign bank details;
  • courier or remittance details.

International enforcement may be difficult, but digital and financial trails can still help.

XLVIII. Preventive Verification Before Applying for a Loan

Before dealing with any lender, a borrower should verify:

  1. Is the lender registered?
  2. Is it authorized to lend?
  3. Does the name match official records?
  4. Are the contact details official?
  5. Does it have a real office?
  6. Is the website secure and legitimate?
  7. Are fees disclosed in writing?
  8. Are payments made to the company, not individuals?
  9. Is there a formal loan agreement?
  10. Is the lender pressuring for upfront fees?
  11. Are reviews suspicious or copied?
  12. Is the offer too good to be true?

A legitimate lender should be transparent about interest, fees, loan term, penalties, data use, and repayment schedule.

XLIX. Warning Signs in Fake Loan Documents

Fake loan approvals often contain:

  • generic company logo;
  • no physical address;
  • wrong grammar;
  • inconsistent company name;
  • fake SEC or DTI number;
  • no authorized signatory;
  • no truth-in-lending disclosure;
  • no loan amortization schedule;
  • no data privacy notice;
  • unrealistic approval amount;
  • demand for advance fee;
  • personal account for payment;
  • threats if payment is not made;
  • fake notary details;
  • copied government logos.

A document that looks official is not necessarily legitimate.

L. Advance Fees and Legitimate Loan Charges

Some legitimate lenders charge application, processing, appraisal, notarial, insurance, or documentary fees. The difference is transparency, legality, and timing.

Legitimate charges are usually:

  • disclosed before contract signing;
  • supported by official receipts;
  • paid to the registered entity;
  • included in the loan documents;
  • deducted from released proceeds or paid through official channels;
  • subject to regulation and accounting;
  • not repeatedly invented after each payment.

A demand to send money to a personal e-wallet before loan release is a major warning sign.

LI. False Claims Involving Government Agencies

Scammers may claim that fees are required by:

  • BSP;
  • SEC;
  • AMLC;
  • BIR;
  • NBI;
  • police;
  • court;
  • insurance commission;
  • credit bureau;
  • local government.

Borrowers should be suspicious of claims that a government agency is holding a private loan until the borrower pays a fee through GCash or a personal account. Government agencies do not normally process private loan release fees through random individuals.

LII. Fake “Wrong Account Number” Scam

A common variation occurs after supposed approval. The scammer tells the borrower that the loan could not be released because the borrower entered a wrong bank account number. The borrower is then told to pay a correction fee, unlocking fee, or verification fee.

This is usually a scam. Legitimate lenders verify bank account details before disbursement and do not require repeated personal transfers to correct a typographical error.

LIII. Fake “Frozen Loan” Scam

Another variation is the “frozen loan” scam. The scammer claims the loan amount is already approved and deposited in a system, but it is frozen due to unpaid tax, AMLC issue, low credit score, wrong account, or security hold.

The borrower is pressured to pay because the money is supposedly already waiting. This is psychological manipulation. If no money has reached the borrower’s account, the borrower should not pay more.

LIV. Fake “Credit Score Repair” Scam

Scammers may say the borrower’s credit score is too low and must be repaired through a fee. They may demand payment to improve credit standing or unlock a higher loan amount.

Legitimate credit scoring does not work by paying random agents to instantly raise a score for loan release.

LV. Fake “Insurance Fee” Scam

Scammers may claim that insurance must be paid first to protect the loan. Legitimate loan insurance, where applicable, should be properly disclosed and paid through official channels. A demand to pay insurance to a personal e-wallet before release is suspicious.

LVI. Fake “Notarial Fee” Scam

Some scammers send a fake contract and ask for notarial fees. A notarized loan contract should involve a real notary, identity verification, and official notarial details. A random online fee does not prove notarization.

LVII. Fake “AMLC Clearance” Scam

Scammers often misuse the term AMLC. They may say the loan is blocked by anti-money laundering rules and that the borrower must pay clearance fees.

This is highly suspicious. Anti-money laundering compliance does not normally require a consumer borrower to send a fee to a personal account to unlock a private loan.

LVIII. If the Borrower Signed a Fake Loan Agreement

If the borrower signed a document but no loan was released, the scammer may threaten to collect payment. The victim should preserve the document and note that no loan proceeds were received.

A loan generally requires actual release of money or value. If no loan was released and the document was part of a fraudulent scheme, the victim may raise fraud and lack of consideration.

LIX. If the Scammer Threatens to Sue for the Approved Loan

Scammers may claim that because the loan was “approved,” the borrower must pay fees or penalties. Approval alone is not the same as actual release of loan proceeds. If the borrower received no money, threats to collect amortization are usually baseless.

Preserve threats and include them in the report.

LX. If the Victim Actually Received a Small Amount

Some scammers or abusive lenders release a small amount after deducting huge fees, then harass the borrower for a larger repayment. This may involve predatory online lending, unfair collection, truth-in-lending violations, or data privacy violations.

The victim should document:

  • amount promised;
  • amount actually received;
  • fees deducted;
  • repayment demanded;
  • interest and penalties;
  • harassment;
  • app permissions;
  • lender identity.

This may be reported to regulators even if it is not a pure advance fee scam.

LXI. Protecting Family and Contacts

If the scammer may contact family or friends, the victim may send a calm warning:

Someone pretending to be a lender may contact you using my name. I was targeted by an online loan scam. Please do not send money, click links, or share information. Kindly send me screenshots if you receive any message.

This helps collect evidence and prevents further victimization.

LXII. Workplace Concerns

Some scammers threaten to message employers. If the victim submitted employer details, it may be wise to inform HR or a trusted supervisor that the victim was targeted by a scam and that any suspicious messages should be ignored and preserved.

This is embarrassing, but early disclosure can reduce harm.

LXIII. Mental and Emotional Impact

Victims often feel shame, panic, anger, or fear. Scammers exploit these emotions. It is important to remember that fraud works by manipulation. Reporting is not shameful. The victim should focus on stopping further loss, preserving evidence, securing accounts, and filing reports.

LXIV. Practical Reporting Packet

A complete reporting packet should include:

  1. one-page summary;
  2. timeline;
  3. victim’s valid ID;
  4. screenshots of advertisements;
  5. screenshots of chats;
  6. payment receipts;
  7. recipient account details;
  8. fake loan documents;
  9. proof no loan was released;
  10. list of suspects or aliases;
  11. platform links;
  12. witness statements, if any;
  13. data privacy concerns;
  14. total amount lost;
  15. requested action.

Printed copies and digital copies should both be prepared.

LXV. One-Page Summary Template

Complainant: [Name] Contact: [Phone/email] Scam Name/Page: [Name] Platform: [Facebook/Messenger/SMS/etc.] Date First Contacted: [Date] Promised Loan Amount: ₱[Amount] Total Amount Paid: ₱[Amount] Payment Channels: [GCash/Maya/bank/remittance] Recipient Account Details: [Details] Loan Released?: No Current Status: Blocked/no response/demanding more fees Evidence Attached: Chats, receipts, screenshots, fake documents Requested Action: Investigation, account preservation/freezing, prosecution, assistance in recovery if possible.

LXVI. What Authorities Need to Know

Authorities need specific facts, not just conclusions. Instead of saying “I was scammed,” provide:

  • who contacted you;
  • what they promised;
  • what they asked you to pay;
  • why you believed them;
  • how much you paid;
  • where you sent the money;
  • what happened after payment;
  • what evidence proves it.

The stronger the documentation, the better the chance of action.

LXVII. If You Do Not Know the Scammer’s Real Name

That is common. Report the available identifiers:

  • phone number;
  • e-wallet number;
  • bank account name;
  • account number;
  • Facebook URL;
  • email address;
  • IP-related data if available;
  • website domain;
  • group admin names;
  • remittance pickup name;
  • photos used;
  • voice recordings;
  • transaction reference numbers.

Investigators and financial providers may be able to trace more information through legal processes.

LXVIII. Preservation of Digital Evidence

Digital evidence should be preserved carefully:

  • take full-page screenshots;
  • include timestamps;
  • export chat history if possible;
  • save URLs;
  • save profile links;
  • save original files;
  • do not crop excessively;
  • do not edit images;
  • back up to cloud or external drive;
  • print copies for filing;
  • keep the device used in the transaction if possible.

If messages were unsent, screenshot the notice showing that messages were removed.

LXIX. Call Recordings and Voice Messages

If the scammer sent voice messages, save them. If calls occurred, preserve call logs. Recording calls may raise legal and privacy issues depending on circumstances, so victims should be cautious. But existing call logs and voluntarily sent voice messages are useful.

LXX. Email Evidence

If the scam involved email:

  • save the full email;
  • do not just screenshot;
  • preserve headers if possible;
  • note sender address;
  • check whether domain is fake;
  • preserve attachments;
  • avoid clicking suspicious links;
  • scan attachments before opening.

Email headers may help trace origin.

LXXI. Website Evidence

If the scam used a website:

  • screenshot homepage;
  • screenshot loan application page;
  • screenshot payment instructions;
  • copy URL;
  • note domain spelling;
  • save terms and conditions;
  • check whether contact details match official company records;
  • preserve any downloadable forms.

Fake websites often disappear quickly.

LXXII. SIM and Phone Number Evidence

If SMS or calls were used:

  • preserve text messages;
  • screenshot caller ID;
  • save phone numbers;
  • note dates and times;
  • report spam numbers to telecom provider if possible;
  • include numbers in police report.

SIM registration does not guarantee that the displayed user is the real scammer, but it may help investigators.

LXXIII. If the Victim Is a Senior Citizen

Senior citizens may be especially vulnerable to loan scams. Family members should help preserve evidence and report quickly. If the senior citizen gave personal information, monitor for identity theft and unauthorized account creation.

If the scam involved intimidation, shame, or threats, report the emotional abuse and pressure tactics.

LXXIV. If the Victim Is a Student or Minor

If a minor was targeted, parents or guardians should assist in reporting. The scam may involve additional concerns if the scammer collected images, IDs, school information, or threatened the minor.

Do not allow the minor to continue communicating with the scammer.

LXXV. If the Victim Is a Small Business Owner

Scammers may offer business loans or capital assistance. Victims should preserve business documents submitted and monitor for misuse of business permits, DTI certificates, BIR registration, bank details, and customer information.

If the scammer used the victim’s business name in later scams, report immediately.

LXXVI. If the Victim Is an OFW Family

OFW families are common targets because scammers assume they need placement fees, emergency loans, or remittance support. If the scam involved claims of overseas employment loan, deployment loan, or visa loan, also preserve any recruitment-related documents.

If a recruitment agency or fake agency is involved, labor migration authorities may also be relevant.

LXXVII. Coordination With Real Lenders

If the scammer impersonated a real lender, notify the real lender. Provide:

  • fake page link;
  • screenshots;
  • fake employee names;
  • payment accounts;
  • documents using the company logo.

The real lender may confirm impersonation and issue a warning. That confirmation can support your complaint.

LXXVIII. Why Reporting Matters Even If Money Is Small

Many victims lose small amounts such as ₱500, ₱1,000, or ₱2,500. They may think reporting is useless. But scammers rely on volume. If hundreds of victims pay small fees, the total is large.

Reports help:

  • identify repeated account numbers;
  • freeze mule accounts;
  • take down pages;
  • build criminal cases;
  • warn the public;
  • pressure platforms to act;
  • support regulatory enforcement.

LXXIX. Common Questions

1. I paid a processing fee but no loan was released. Is that reportable?

Yes. Preserve the promise of loan release, payment proof, and failure to release.

2. The scammer said I must pay because my loan is already approved. Should I pay?

No. Approval is not money in your account. Do not pay more fees.

3. Can I get my money back from GCash, Maya, or the bank?

Possibly, but not guaranteed. Report immediately. Recovery is more likely if funds have not been withdrawn or transferred.

4. The account name on the e-wallet is real. Can I sue that person?

You may report the account details. Whether that person is the scammer, mule, or another victim requires investigation.

5. I sent my ID and selfie. What should I do?

Report possible identity theft, monitor accounts, secure passwords, and preserve proof of what was sent.

6. The scammer threatened to post my information. What should I do?

Preserve threats, report to cybercrime authorities and privacy authorities, warn contacts, and do not pay hush money.

7. Is an online loan page legitimate if it has an SEC certificate?

Not necessarily. Scammers copy real certificates. Verify through official sources and official contact channels.

8. Can a lender ask for fees?

Legitimate fees must be lawful, disclosed, receipted, and paid through official channels. Repeated personal transfers before release are suspicious.

9. Should I block the scammer?

Preserve evidence first. After screenshots and reports, blocking may prevent further harassment.

10. Can I report anonymously?

You can report pages or accounts to platforms anonymously, but criminal complaints usually require an identified complainant and evidence.

LXXX. Practical Anti-Scam Rules

Before paying any lender, remember:

  • No loan proceeds, no repeated fees.
  • Do not send money to personal accounts.
  • Do not send OTPs or passwords.
  • Verify the lender through official channels.
  • Do not trust copied certificates.
  • Do not trust pressure deadlines.
  • Do not believe “AMLC clearance fee” claims.
  • Do not pay to correct a “wrong account number.”
  • Do not install suspicious apps.
  • Do not submit IDs to unknown pages.
  • If it sounds too easy, verify twice.

LXXXI. Conclusion

Advance fee loan scams in the Philippines exploit financial urgency. The scammer promises fast approval, demands upfront payments, then disappears or invents more fees. The victim may lose money and may also face identity theft, harassment, or misuse of personal data.

The proper response is immediate and organized: stop paying, preserve evidence, report the payment transaction, secure accounts, and file complaints with law enforcement, regulators, platforms, and payment providers. The most important evidence includes chat screenshots, payment receipts, account numbers, fake loan documents, page links, and a clear timeline.

A victim should not be ashamed to report. Fraud is designed to deceive. The sooner the victim acts, the better the chance of freezing funds, tracing accounts, stopping further harm, and helping authorities identify repeat offenders.

The guiding rule is this: a real loan should result in money being released to the borrower, not endless fees being sent by the borrower to strangers.

Disclaimer: This content is not legal advice and may involve AI assistance. Information may be inaccurate.

Privacy Policy

Terms of Use

Lawyer Login

 
 
Privacy Policy         Terms of Use         Lawyer Login