If you are outside the Philippines and lost money to an online scam connected to a Filipino person, Philippine bank account, e-wallet, phone number, business page, or website, you can still report it to Philippine authorities. The important thing is to act quickly, preserve digital evidence properly, and send the report to the right office: your bank or payment provider first, then the PNP Anti-Cybercrime Group, NBI Cybercrime Division, CICC hotline, DOJ Office of Cybercrime, and, in consumer or data-privacy cases, the DTI or National Privacy Commission.
Can you report a Philippine online scam while abroad?
Yes. You do not need to be physically in the Philippines to make an initial report.
Many online scam reports now begin by email, hotline, online complaint portal, or messenger channel. However, if the case proceeds to formal criminal investigation or prosecution, Philippine authorities will usually need a sworn complaint-affidavit and authenticated supporting documents.
A complaint-affidavit is your written statement of facts signed under oath. If you are abroad, this usually means one of the following:
| Where you sign the document | What is usually needed for use in the Philippines |
|---|---|
| Philippine Embassy or Consulate | Consular notarization or acknowledgment |
| Local notary in an Apostille country | Local notarization plus Apostille, depending on the document and receiving office |
| Local notary in a non-Apostille country | Local notarization plus consular authentication or legalization, depending on local and Philippine requirements |
Philippine embassies and consulates commonly notarize affidavits and special powers of attorney for use in the Philippines, and personal appearance of the signatory is generally required. Once notarized by the Philippine Embassy or Consulate, the document can be used in the Philippines. (Philippine Embassy)
What counts as an online scam under Philippine law?
“Online scam” is a practical phrase, not just one legal category. Depending on the facts, the conduct may fall under one or more Philippine laws.
Common examples include:
- A fake seller who accepts payment through a Philippine bank or e-wallet and never delivers the item.
- A romance scammer or “love scam” who uses a Filipino identity, Philippine number, or Philippine account to solicit money.
- A fake investment scheme promising guaranteed returns.
- A phishing link that captures your online banking, e-wallet, or credit card credentials.
- A fake job, visa, immigration, loan, or agency scheme.
- A scammer using another person’s identity documents, photos, or business name.
- A money mule account receiving scam proceeds.
The same facts may support several legal theories. For example, a scammer who tricks you through Facebook and receives money through a Philippine e-wallet may be investigated as estafa, computer-related fraud, financial account scamming, access device fraud, or identity theft, depending on the evidence.
Philippine laws that may apply
Estafa or swindling under the Revised Penal Code
Many online scams are still prosecuted as estafa, the Philippine crime of swindling under Article 315 of the Revised Penal Code. In simple terms, estafa involves fraud or deceit that causes another person to suffer damage, usually financial loss. (Lawphil)
Estafa may apply when the scammer:
- pretended to sell goods or services;
- misrepresented an investment, job, loan, visa, or business opportunity;
- induced you to send money; and
- caused you financial damage.
A mere unpaid debt is not automatically estafa. The key issue is usually whether there was deceit from the beginning, not just a later failure to pay.
Cybercrime Prevention Act of 2012, Republic Act No. 10175
The Cybercrime Prevention Act of 2012 covers cyber-related offenses, including computer-related forgery, computer-related fraud, and computer-related identity theft. It also authorizes the NBI and PNP to maintain cybercrime units for cases involving violations of the Act. (Supreme Court E-Library)
For online scam victims abroad, the jurisdiction rule is important. Philippine Regional Trial Courts may take jurisdiction over cybercrime cases when any element of the offense was committed in the Philippines, when a computer system used was wholly or partly in the Philippines, or when damage was caused to a person who was in the Philippines at the time of the offense. Filipino nationals may also be covered regardless of where the offense was committed. (Supreme Court E-Library)
This means Philippine authorities may still have a basis to act if the scam involved a Philippine suspect, Philippine bank or e-wallet, Philippine SIM, Philippine-hosted system, or damage connected to the Philippines.
Anti-Financial Account Scamming Act, Republic Act No. 12010 of 2024
Republic Act No. 12010, known as the Anti-Financial Account Scamming Act or AFASA, is especially relevant when the scam used bank accounts, e-wallets, payment accounts, or money mule accounts. The law covers financial accounts such as bank accounts, credit card accounts, transaction accounts, e-wallets, and other accounts used for financial products or services. (Lawphil)
AFASA penalizes, among others:
- money muling activities, such as selling, lending, renting, borrowing, or allowing the use of a financial account for proceeds known to come from crimes or social engineering schemes;
- social engineering schemes, where a person obtains sensitive identifying information through deception or fraud, resulting in unauthorized access or control over a financial account;
- buying or selling financial accounts; and
- opening financial accounts under fictitious names or another person’s identity. (Lawphil)
AFASA also allows financial institutions to temporarily hold funds involved in a disputed transaction for a BSP-prescribed period not exceeding 30 calendar days unless extended by a court. This is why time matters: the faster you report to the bank or e-wallet provider, the better the chance that funds can be flagged before they are withdrawn or layered through other accounts. (Lawphil)
Access Devices Regulation Act, Republic Act No. 8484, as amended
If the scam involves credit cards, debit cards, ATM cards, account numbers, access codes, online banking credentials, or similar payment tools, Republic Act No. 8484 may apply. This law regulates access devices and penalizes fraudulent acts involving them. (Lawphil)
This can be relevant in cases involving:
- stolen credit card details;
- unauthorized online purchases;
- fake loan or credit applications;
- use of another person’s card or account access credentials; or
- trafficking in compromised payment details.
Data Privacy Act of 2012, Republic Act No. 10173
If the scam involved misuse of your personal information, ID, passport, photos, bank details, address, or sensitive personal data, the Data Privacy Act may also be relevant. The National Privacy Commission accepts complaints when personal information is misused, maliciously disclosed, improperly disposed of, or when data privacy rights are violated. (National Privacy Commission)
A privacy complaint is separate from a criminal scam report. It may help when the problem involves identity theft, unauthorized posting of IDs, fake accounts using your personal data, or a business that mishandled your information.
Where to report an online scam from outside the Philippines
1. Report first to the bank, e-wallet, card issuer, or payment platform
If money moved through a bank, e-wallet, remittance company, card, crypto platform, or payment processor, report to that provider immediately.
Ask for:
- a reference or ticket number;
- account freezing or temporary holding, if available;
- fraud investigation;
- written confirmation of your report;
- trace or recall request, if the provider offers it;
- merchant dispute or chargeback, if card-based;
- preservation of transaction records.
For BSP-supervised financial institutions, the usual first-level recourse is the institution’s own Financial Consumer Protection Assistance Mechanism or customer service channel. If unresolved, the matter may be escalated to the BSP Consumer Assistance Mechanism through BSP Online Buddy or other BSP channels. (Bangko Sentral ng Pilipinas)
Do not wait for the police report before notifying the bank or e-wallet. In practice, the bank’s fraud unit may be the only office that can immediately flag or hold funds while the transaction is still traceable.
2. Report to the CICC 1326 cybercrime hotline
The Cybercrime Investigation and Coordinating Center, or CICC, operates reporting mechanisms for cyber fraud, including Hotline 1326. The 1326 hotline has been publicly described as a 24/7 reporting channel for scams such as investment scams, phishing, text scams, email scams, caller ID spoofing, romance scams, and other online scams. (Philippine News Agency)
This is often useful for urgent coordination, especially when the scam is fresh and funds may still be inside the Philippine financial system.
3. Report to the PNP Anti-Cybercrime Group
The Philippine National Police Anti-Cybercrime Group, or PNP-ACG, handles cybercrime complaints and digital evidence matters. RA 10175 and its implementing rules recognize the PNP, together with the NBI, as a law enforcement authority responsible for cybercrime enforcement. (Supreme Court E-Library)
When reporting from abroad, prepare a clear email or online report with:
- your full name, nationality, current country, email, and phone number;
- the scammer’s name, aliases, profiles, numbers, email addresses, and account handles;
- the Philippine bank, e-wallet, or remittance account used;
- transaction dates, amounts, reference numbers, and currencies;
- screenshots and exported chat logs;
- explanation of how the scam happened; and
- what you need: investigation, account tracing, preservation of evidence, or referral for criminal complaint.
PNP-ACG contact details may change, so verify through its official website or official social media pages before sending sensitive information. Publicly listed PNP-ACG pages have shown contact numbers and online complaint channels for assistance. (Facebook)
4. Report to the NBI Cybercrime Division
The National Bureau of Investigation Cybercrime Division also handles cybercrime investigations. The NBI’s official division listing identifies the Cybercrime Division and lists its email as ccd@nbi.gov.ph. (National Bureau of Investigation)
The NBI may be particularly helpful when:
- the scam appears organized;
- multiple victims are involved;
- the suspect uses several fake identities;
- digital forensic work may be needed;
- the case involves identity theft, hacked accounts, or account takeover; or
- a formal NBI investigation report may support prosecution.
5. Report to the DOJ Office of Cybercrime for cross-border concerns
The DOJ Office of Cybercrime is designated as the central authority for cybercrime-related international mutual assistance and extradition matters under RA 10175 and its implementing rules. It also acts on complaints and referrals and may facilitate investigation and prosecution of cybercrimes. (Supreme Court E-Library)
This matters when the victim is abroad, the evidence is abroad, the platform is foreign, or the suspect moved funds across jurisdictions.
A private victim does not personally run a mutual legal assistance request. In practice, foreign-to-Philippine cooperation normally moves through law enforcement, prosecutors, or central authorities. But your report should clearly state the cross-border facts so Philippine authorities can assess whether international coordination is needed.
6. Report to the DTI for online seller and consumer transactions
If the scam involves an online seller, online store, product, service, refund, non-delivery, or deceptive sales practice, the Department of Trade and Industry may be relevant. DTI’s e-commerce FAQ states that complaints against online sellers may be sent to the DTI Fair-Trade Enforcement Bureau at fteb@dti.gov.ph, with eco@dti.gov.ph copied. (DTI ECommerce)
DTI is most useful when there is a real seller, business identity, marketplace transaction, or consumer dispute. If the “seller” is only a fake account with no identifiable business, DTI may refer the matter to cybercrime authorities.
7. Report to the National Privacy Commission for misuse of personal data
If your passport, ID, selfie, address, phone number, financial data, or private information was used without authority, you may also file with the National Privacy Commission. NPC complaints generally require a filled-out and notarized complaint form or verified complaint, supporting evidence, and witness affidavits when applicable. (National Privacy Commission)
This is especially relevant if the scammer:
- used your ID to open accounts;
- posted your personal documents online;
- impersonated you;
- used your private photos to extort money;
- obtained your bank details through phishing; or
- mishandled personal data obtained from a business or platform.
8. Report text scams or scam SIM numbers to the NTC
If the scam involved SMS, phone calls, spoofed numbers, or registered SIM concerns, the National Telecommunications Commission may receive text scam or telecommunications-related complaints. NTC public guidance has referred victims to its text scam reporting channels and hotline 1682 for SIM-registration-related concerns. (www.foi.gov.ph)
NTC reporting does not replace a police, NBI, bank, or prosecutor complaint. It is mainly useful for telecommunications enforcement, SIM-related concerns, and blocking or investigation of numbers used in scams.
Step-by-step guide: how to report from abroad
Step 1: Stop the loss immediately
Do these before preparing a long legal complaint:
- Freeze or secure your affected bank, e-wallet, crypto, email, and social media accounts.
- Change passwords and enable multi-factor authentication.
- Contact your bank, card issuer, e-wallet, or payment platform.
- Ask whether the transfer can be reversed, recalled, charged back, held, or flagged.
- Get a reference number for every report.
- Do not send more money for “tax,” “unlocking,” “processing,” “verification,” or “recovery.”
A common second-stage scam is the “recovery agent” who claims they can retrieve your money for an upfront fee. Treat that as a red flag unless the person is verifiably from your bank, official government channel, or legitimate legal representative.
Step 2: Preserve evidence before the scammer deletes it
Do not rely only on screenshots. Save evidence in several formats.
Keep:
- screenshots showing the profile name, URL, phone number, date, and time;
- exported chat history from Messenger, WhatsApp, Telegram, Viber, Instagram, email, or SMS;
- payment receipts and transaction confirmations;
- bank or e-wallet account numbers, QR codes, names, usernames, and reference numbers;
- links to Facebook pages, websites, marketplace listings, Telegram channels, or ads;
- voice notes, call logs, email headers, tracking numbers, and delivery records;
- copies of IDs or documents the scammer sent;
- any threats, promises, receipts, invoices, contracts, or “certificates.”
For social media, capture the profile URL, not just the display name. Display names can be changed easily; URLs, usernames, and numeric profile IDs are more useful.
Step 3: Make a simple chronology
Investigators and prosecutors need a clear timeline. Use this format:
| Date and time | Event | Evidence |
|---|---|---|
| 1 March 2026, 9:15 PM Manila time | Scammer first contacted me on Facebook Marketplace | Screenshot A, profile URL |
| 2 March 2026, 10:02 AM | I sent PHP 25,000 to GCash number ending 1234 | Receipt B |
| 3 March 2026 | Seller promised delivery, then stopped replying | Chat export C |
| 5 March 2026 | I reported to GCash and received ticket no. ___ | Email D |
| 6 March 2026 | I reported to PNP/NBI/CICC | Email E |
Use both your local time and Philippine time if possible. This avoids confusion when the scam occurred across time zones.
Step 4: Send an initial report to the right Philippine offices
For most overseas victims, a practical initial reporting sequence is:
- Financial provider — bank, e-wallet, remittance company, card issuer, or crypto platform.
- CICC 1326 — for urgent cyber scam reporting.
- PNP-ACG or NBI Cybercrime Division — for investigation.
- DOJ Office of Cybercrime — if the matter is cross-border, complex, or requires coordination.
- DTI, NPC, or NTC — if the facts involve consumer transactions, personal data misuse, or telecom numbers.
Do not send your original passport or ID to random pages claiming to be investigators. Use official government domains, official agency pages, or verified embassy channels.
Step 5: Prepare a complaint-affidavit if the case will be formally filed
A formal Philippine criminal complaint normally needs more than a message saying “I was scammed.”
Your complaint-affidavit should include:
- your full legal name, citizenship, address abroad, email, and contact number;
- the respondent’s name, aliases, account names, numbers, addresses, or identifying details;
- a plain-language narration of what happened;
- exact amount lost and how it was sent;
- why you believed the representation;
- how and when you discovered the fraud;
- list of attached evidence;
- statement that the facts are true based on your personal knowledge and authentic records;
- your signature under oath.
If you cannot personally appear in the Philippines, you may also execute a Special Power of Attorney authorizing a trusted person in the Philippines to file, follow up, receive notices, submit documents, or appear in administrative proceedings on your behalf. Philippine consulates commonly notarize SPAs and affidavits for use in the Philippines, but they do not usually draft the document for you. (Philippine Consulate LA)
Step 6: Submit authenticated documents and keep copies
For Philippine use, your receiving office may ask for:
- notarized complaint-affidavit;
- consularized or apostilled documents, if signed abroad;
- valid passport or government ID;
- proof of address abroad;
- payment records;
- screenshots and chat exports;
- bank certification or transaction history;
- platform complaint records;
- prior police report from your country, if any;
- SPA, if someone in the Philippines will act for you.
Keep a complete digital folder and a printed folder. Name files clearly:
01_Complaint-Affidavit.pdf02_Passport-ID.pdf03_Transaction-Receipt-2026-03-02.pdf04_Facebook-Chat-Export.pdf05_Bank-Fraud-Ticket.pdf
Good file organization can make a real difference because cybercrime units handle many complaints and investigators need to quickly understand your evidence.
Should you also report in your country of residence?
Yes, especially if you are a foreigner or Filipino abroad and the payment originated from a bank or payment platform in your current country.
Report to:
- your local police or cybercrime office;
- your local bank or card issuer;
- the payment platform used;
- the marketplace or social media platform;
- your country’s consumer protection or fraud reporting office, if available.
A foreign police report can help establish that you promptly reported the fraud. It may also help your bank, insurer, card issuer, or Philippine authorities if the case later needs cross-border coordination.
What if the scammer is in the Philippines but I am a foreigner?
Foreigners may report crimes affecting them, especially if the suspect, account, phone number, platform activity, or money trail is connected to the Philippines.
Your nationality does not prevent you from reporting to Philippine authorities. What matters is whether Philippine authorities have a factual and legal basis to investigate. Under RA 10175 and RA 12010, jurisdiction may exist when elements of the offense, computer systems, financial accounts, infrastructure, suspects, or damage are connected to the Philippines. (Supreme Court E-Library)
Practical issues for foreigners include:
- documents may need translation into English if they are in another language;
- affidavits signed abroad may need notarization and apostille or consular authentication;
- Philippine offices may require a local representative for follow-up;
- bank secrecy and data privacy rules may limit what information is released directly to you;
- recovery of money is not automatic even if a criminal report is accepted.
What if you only know the scammer’s Philippine bank or e-wallet account?
Report anyway. A bank account, e-wallet number, QR code, mobile number, or recipient name can be useful, even if it later turns out to belong to a money mule.
Under AFASA, money muling is itself a punishable act when a person knowingly uses, lends, sells, rents, borrows, or allows use of a financial account for proceeds known to come from crimes or social engineering schemes. (Lawphil)
Do not assume the named account holder is the mastermind. In many scam operations, the visible account holder is a mule, recruiter, or identity-theft victim. Still, that account may lead investigators to transaction records, device logs, cash-out points, IP addresses, linked accounts, or CCTV footage.
Can Philippine authorities recover the money?
Sometimes, but it depends on timing and traceability.
Recovery is more likely when:
- you report within hours, not weeks;
- the funds are still in the receiving account;
- the bank or e-wallet can temporarily hold the funds;
- the transaction is within the regulated Philippine financial system;
- you have complete receipts and reference numbers;
- the recipient account is identifiable;
- there are multiple consistent victim reports.
Recovery is harder when:
- the money was withdrawn in cash;
- funds were split across many accounts;
- crypto was sent to a non-custodial wallet;
- the account used fake or stolen identity documents;
- the scammer is outside the Philippines;
- the report was made long after the transaction;
- records from platforms or telecoms were not preserved quickly.
A criminal case can lead to restitution or civil liability if there is conviction, and AFASA also provides mechanisms involving financial institutions and disputed funds. But a police report is not the same as a refund order. The fastest possible recovery route is usually through the payment provider’s fraud, dispute, chargeback, or account-hold process.
Practical timelines and bottlenecks
| Stage | Typical practical timeline | Common bottleneck |
|---|---|---|
| Bank/e-wallet fraud ticket | Same day to several business days | Funds already withdrawn |
| CICC hotline or initial cybercrime report | Same day, if reachable | Incomplete transaction details |
| PNP/NBI initial assessment | Days to weeks | Heavy caseload, missing affidavit, unclear jurisdiction |
| Complaint-affidavit preparation abroad | Several days to weeks | Consular appointment or apostille delay |
| Prosecutor preliminary investigation | Varies by office and case complexity | Need for complete evidence and respondent identity |
| Platform or telecom data preservation | Time-sensitive | Data retention periods and foreign platform cooperation |
| Money recovery | Highly variable | Funds dissipated, mule accounts, cross-border transfers |
The biggest mistake is waiting until all documents are perfect before making the first report. Send the urgent fraud report first, then follow with the notarized affidavit and organized evidence.
Evidence checklist for overseas victims
Prepare these as early as possible:
| Evidence | Why it matters |
|---|---|
| Valid passport or ID | Proves your identity as complainant |
| Complaint-affidavit | Formal sworn statement for investigation or prosecution |
| Transaction receipts | Shows amount, date, reference number, and recipient |
| Bank or e-wallet statement | Confirms funds left your account |
| Chat logs | Shows deceit, promises, instructions, and admissions |
| Profile URLs and usernames | Helps identify the online account |
| Phone numbers and email addresses | Helps telecom, platform, and cybercrime tracing |
| Scam website URLs | Helps preservation, takedown, and domain tracing |
| Screenshots with timestamps | Useful if content is deleted |
| Foreign police report | Helpful for cross-border cases |
| Platform complaint tickets | Shows you reported promptly |
| SPA for Philippine representative | Allows someone local to file and follow up |
Common mistakes to avoid
Sending more money to “unlock” your funds
Scammers often claim your money is frozen and needs a tax, clearance fee, anti-money-laundering certificate, customs fee, attorney fee, or verification deposit. This is usually part of the same fraud.
Posting accusations online before preserving evidence
Publicly naming the scammer may alert them to delete accounts, move funds, or threaten you. Preserve evidence and report first.
Sending sensitive IDs to unofficial pages
Some fake “cybercrime assistance” pages collect passports, IDs, and selfies. Verify official channels before sending personal data.
Editing screenshots
Do not crop out dates, URLs, usernames, or reference numbers. Keep original files. Edited screenshots may still help, but originals are more credible.
Reporting only to Facebook or the marketplace
Platform reports are useful, but they are not the same as a police, bank, NBI, PNP, CICC, DTI, NPC, or NTC report.
Waiting too long
Banks, telecoms, and platforms may retain different types of records for limited periods. RA 10175 and its rules include preservation procedures for computer data, but preservation generally requires proper action by authorities or competent offices. (Supreme Court E-Library)
Frequently Asked Questions
Can I file a Philippine cybercrime complaint by email from abroad?
Yes, you can usually start the process by email, hotline, online portal, or official agency messaging channel. For formal prosecution, however, you should expect to submit a sworn complaint-affidavit and authenticated supporting documents.
Do I need to go to the Philippines to report an online scam?
Not always. Initial reporting can often be done remotely. Personal appearance may become necessary if the case requires sworn statements, clarificatory questioning, court testimony, or direct participation in proceedings. If you cannot travel, a properly executed SPA may allow a trusted representative in the Philippines to assist with filings and follow-ups.
Should I report to PNP or NBI?
You may report to either, and in urgent cases you may report to both. The PNP Anti-Cybercrime Group and NBI Cybercrime Division are both recognized cybercrime law enforcement authorities under RA 10175 and its implementing rules. (Supreme Court E-Library)
What is the fastest way to recover money from a Philippine scam?
The fastest route is usually through the bank, e-wallet, card issuer, remittance company, or payment platform used in the transaction. Ask immediately about fraud blocking, chargeback, recall, account hold, or disputed transaction procedures. Police reports help investigation, but payment providers are usually the first practical line for freezing or reversing funds.
Can I report a GCash, Maya, bank transfer, or QR PH scam from another country?
Yes. Report to the provider immediately and include the account number, wallet number, QR code, recipient name, amount, reference number, and date. If the provider is BSP-supervised and your complaint is unresolved, you may escalate through BSP’s Consumer Assistance Mechanism. (Bangko Sentral ng Pilipinas)
What if the scammer used a fake name?
A fake name does not end the case. Investigators may still use payment trails, phone numbers, e-wallet records, IP logs, platform data, device information, cash-out records, delivery details, or linked accounts. Your job is to preserve every identifier you have.
Can a foreigner file estafa in the Philippines?
Yes, a foreigner can complain if the facts show a Philippine criminal offense and Philippine authorities have jurisdiction. The practical challenge is preparing admissible documents from abroad and showing the Philippine connection clearly.
Is a police report enough to get my money back?
Usually, no. A police report supports investigation, account tracing, and possible prosecution, but it is not automatically a refund order. For recovery, pursue the payment provider’s fraud process at the same time.
What if my passport or ID was used in the scam?
Report to the cybercrime authorities and consider filing with the National Privacy Commission if your personal information was misused or maliciously disclosed. Also notify your bank, embassy, or identity-document issuer if there is risk of identity fraud.
Can I file a case if I only lost a small amount?
Yes. Small losses can still be reported, especially when the same account or scammer victimizes many people. Multiple small complaints may reveal a larger organized scheme.
Key Takeaways
- You can report a Philippine-connected online scam even if you are outside the Philippines.
- Report to your bank, e-wallet, card issuer, or payment platform immediately before the funds disappear.
- Use CICC 1326, PNP-ACG, NBI Cybercrime Division, and DOJ Office of Cybercrime depending on urgency and complexity.
- For online seller disputes, DTI may help; for personal data misuse, NPC may help; for scam texts or SIM issues, NTC may help.
- Preserve evidence before the scammer deletes accounts, chats, websites, or listings.
- A formal Philippine complaint usually needs a sworn complaint-affidavit and authenticated documents if signed abroad.
- Money recovery is time-sensitive and not guaranteed, but fast reporting improves the chance of freezing, tracing, or documenting the funds.
- A Philippine bank account, e-wallet, phone number, QR code, or profile URL can be valuable evidence even if the scammer used a fake name.