If you were scammed online and the money went to a Philippine bank account, GCash, Maya, GrabPay, ShopeePay, or another e-wallet, act quickly. The account number, e-wallet mobile number, account name, QR code, merchant ID, and transaction reference number are not just “details” — they are the money trail. They can help your bank or e-wallet flag the transaction, preserve records, coordinate with the receiving institution, and support a cybercrime complaint with the PNP Anti-Cybercrime Group, NBI Cybercrime Division, or other proper authorities.
This guide explains what counts as online fraud in the Philippines, what laws apply, where to report, what evidence to prepare, and what realistically happens after you file a report.
What Counts as Online Fraud Involving Bank or E-Wallet Details?
Online fraud usually involves deception that causes you to send money, reveal account credentials, or lose control of your bank or e-wallet account.
Common examples include:
- A fake online seller who receives payment but never ships the item
- A fake investment, crypto, trading, or “tasking” scheme
- A romance scam where the victim sends money after emotional manipulation
- A fake job offer that asks for “processing,” “unlocking,” or “tax” fees
- A phishing message pretending to be from a bank, e-wallet, courier, telco, or government agency
- A fake customer service account asking for your OTP, MPIN, password, or card details
- A QR code scam where payment goes to a different wallet or merchant
- A mule account that receives money for the real scammer
There are two practical categories:
| Situation | What happened | Why it matters |
|---|---|---|
| Unauthorized transaction | Someone accessed your bank, card, or e-wallet without your consent | The issue may involve hacking, phishing, OTP theft, SIM compromise, or access-device fraud |
| Authorized push-payment scam | You personally sent the money because you were deceived | The transaction was “authorized” in form, but the consent was obtained through fraud |
Both should be reported. However, recovery is often harder when the victim voluntarily sent the money, because the bank or e-wallet may treat it differently from a hacked account. That does not mean it is hopeless. Philippine law now specifically recognizes social engineering, money muling, and disputed financial transactions as serious concerns.
Why the Bank or E-Wallet Details Matter
When you report online fraud, the most useful details are usually:
- Name of the receiving bank or e-wallet
- Account name shown during transfer
- Account number or mobile number
- QR code, merchant name, or merchant ID
- Transaction reference number
- Date and exact time of transfer
- Amount sent
- Screenshots of the chat, listing, profile, website, or email
- Your own bank or e-wallet account used for payment
These details help institutions trace the flow of funds. They may also help trigger a temporary hold, coordinated verification, or law enforcement request.
Victims often ask: “Can the bank tell me who owns the scammer’s account?” Usually, no. Banks and e-wallets cannot simply disclose another customer’s personal information to a private complainant because of privacy, banking, and financial regulations. But under proper legal processes, institutions, regulators, and law enforcement can verify account information and preserve evidence.
Legal Basis for Reporting Online Fraud in the Philippines
Anti-Financial Account Scamming Act: RA 12010 of 2024
The most important recent law is the Anti-Financial Account Scamming Act, or AFASA, Republic Act No. 12010, approved in 2024. It covers financial accounts, including bank accounts, credit card accounts, and e-wallets, and applies to banks, non-bank financial institutions, payment service providers, and other institutions regulated by the Bangko Sentral ng Pilipinas. The law defines e-wallets as electronic devices or instruments that store digital value, and treats sensitive bank, credit card, and e-wallet information as protected information. (Lawphil)
AFASA penalizes money muling, which includes selling, lending, renting, or allowing another person to use a financial account for fraudulent activity. This is important because many scammers do not use accounts under their real names. They use mule accounts, borrowed accounts, fake identities, or accounts opened by recruits. (Lawphil)
AFASA also penalizes social engineering schemes, which involve obtaining sensitive identifying information through deception or fraud, including by pretending to act for a bank, e-wallet, or financial institution. This covers many phishing, fake support, OTP, MPIN, and account takeover scams. (Lawphil)
The law allows financial institutions to temporarily hold disputed funds for a period prescribed by the BSP, but not more than 30 calendar days, unless extended by a court. It also requires a coordinated verification process when institutions receive a complaint or detect suspicious transactions, even if the funds have already moved. (Lawphil) (Lawphil)
AFASA is also serious about false accusations. A malicious false report may itself be punishable. (Lawphil)
Cybercrime Prevention Act: RA 10175 of 2012
Republic Act No. 10175, the Cybercrime Prevention Act of 2012, applies when fraud is committed using computer systems, websites, apps, phones, online accounts, emails, or electronic communications. It includes computer-related fraud, where unauthorized input, alteration, deletion, or interference involving computer data or systems causes damage. (Lawphil)
Online scams often involve both traditional fraud and cybercrime. For example, a fake seller may commit estafa under the Revised Penal Code, while using Facebook Messenger, Viber, Telegram, email, or a fake website may bring the case within cybercrime procedures.
Estafa Under Article 315 of the Revised Penal Code
Many online fraud cases are also reported as estafa, or swindling, under Article 315 of the Revised Penal Code. In simple terms, estafa happens when a person defrauds another through deceit or abuse of confidence, causing damage. (Lawphil)
For estafa by false pretenses, the usual elements include a false representation, reliance by the victim, delivery of money or property because of that representation, and resulting damage. (Supreme Court E-Library)
Examples:
- A seller falsely claims an item exists and is ready for shipment.
- A scammer pretends to be a recruiter and asks for processing fees.
- A fake investment agent promises guaranteed returns and disappears.
- A person pretends to be bank support and tricks you into sending money or revealing account credentials.
Access Devices Regulation Act: RA 8484
Republic Act No. 8484, the Access Devices Regulation Act of 1998, may apply when the scam involves credit cards, debit cards, ATM cards, account numbers, PINs, codes, or other access devices used to obtain money, goods, services, or transfer funds. (Lawphil)
This law is relevant in cases involving stolen card details, unauthorized online purchases, compromised account numbers, or illegal use of another person’s access credentials.
Data Privacy, SIM Registration, and Bank Diligence
Online fraud cases may also involve personal data misuse under the Data Privacy Act, Republic Act No. 10173, especially when identity documents, selfies, OTPs, or account credentials were harvested through deception. (Lawphil)
The SIM Registration Act, Republic Act No. 11934, was enacted to promote accountability in SIM use and to assist law enforcement in resolving crimes involving SIMs. This can matter when the scammer used a Philippine mobile number tied to an e-wallet or messaging account. (Lawphil)
Banks also have a high duty of diligence. The Supreme Court has repeatedly recognized that banks deal with the public’s money and must exercise the highest degree of diligence in handling accounts and transactions. In a case involving unauthorized withdrawals, the Court emphasized the fiduciary nature of banking and affirmed liability where the bank failed to exercise the required diligence. (Supreme Court of the Philippines)
What to Do Immediately After You Discover the Scam
The first few hours matter. Funds can be withdrawn, transferred, converted to crypto, or moved through several accounts very quickly.
Stop communicating with the scammer. Do not send more money for “verification,” “tax,” “release,” “unlocking,” “customs,” “refund processing,” or “withdrawal fees.”
Secure your own accounts. Change passwords, MPINs, and email passwords. Unlink unknown devices. Freeze your card if card details were exposed. Use only the official bank or e-wallet app, website, hotline, or branch.
Preserve evidence before it disappears. Take screenshots of:
- Chat messages
- Profile pages
- Phone numbers
- Bank or e-wallet account details
- QR codes
- Payment receipts
- Transaction history
- Online listings
- Emails and links
- Delivery tracking claims
- Group chat announcements
- Investment dashboards or fake app screens
Save originals, not just screenshots. Do not delete messages, emails, SMS, app notifications, or transaction records. Electronic evidence may be admissible, but authenticity matters. Under the Rules on Electronic Evidence, the party presenting an electronic document must be able to prove its authenticity. (Lawphil)
Write a short incident summary. Include:
- What happened
- When you first contacted the person
- What the scammer promised
- How much you sent
- Where you sent it
- What happened after payment
- What evidence you have
Step-by-Step Guide: How to Report Online Fraud Using Bank and E-Wallet Details
Step 1: Report Immediately to Your Own Bank or E-Wallet
Start with the institution you used to send the money.
Report through official channels only:
- In-app help center
- Official hotline
- Official website
- Official email address
- Branch or customer service desk
Give the following information:
| Information | Example |
|---|---|
| Amount sent | ₱8,500 |
| Date and time | June 27, 2026, 9:42 PM |
| Sending account | Your bank/e-wallet used for payment |
| Receiving account | Bank name, account number, account name, e-wallet number |
| Reference number | Instapay/PESONet/e-wallet transaction ID |
| Scam type | Fake seller, phishing, investment scam, romance scam, job scam |
| Evidence | Screenshots, receipts, links, chats, emails |
| Requested action | Fraud report, account flagging, transaction dispute, preservation of records |
Ask for a case number, ticket number, or reference number. Write down the date, time, and name or ID of the representative if available.
Also ask whether the institution can initiate a disputed transaction process, temporary hold, or coordinated verification under AFASA. The institution may not confirm everything to you, especially if another customer’s account is involved, but your report helps create an official record.
Step 2: Report to the Receiving Bank or E-Wallet, If Known
If you know where the money went, report to the receiving institution too.
For example:
- You sent from Bank A to a GCash number.
- You sent from GCash to Bank B.
- You sent from Maya to a bank account.
- You scanned a QR code showing a merchant or wallet name.
The receiving institution may not disclose the account owner’s identity, but you can ask them to:
- Flag the receiving account
- Preserve account and transaction records
- Coordinate with your own bank or e-wallet
- Act on a law enforcement request
- Provide a report reference number
For GCash-related scams, the GCash Help Center instructs users to report the scammer to the PNP or NBI, report the incident to GCash immediately with details and screenshots, and block the scammer. (GCash Help Center)
Banks also have their own official fraud and dispute channels. For example, BDO directs customers to its customer contact center for scams, fraud, lost or stolen cards, and phishing reports, and has a dispute form for account and cardholders. (BDO Philippines) (BDO Philippines)
Step 3: File a Report With the PNP Anti-Cybercrime Group or NBI Cybercrime Division
For serious online fraud, do not stop at the bank or e-wallet report. File with law enforcement.
The two most common offices are:
| Office | Best for | What usually happens |
|---|---|---|
| PNP Anti-Cybercrime Group | Online scams, phishing, fake accounts, social media fraud, cybercrime complaints | Complaint intake, evidence review, possible referral or investigation |
| NBI Cybercrime Division | Cybercrime complaints requiring investigation, affidavits, technical review, coordination | Preliminary interview, sworn statements, collection of supporting evidence |
The NBI Cybercrime Division’s Citizen’s Charter describes a process where the complainant proceeds to the Cybercrime Division to file the complaint or request investigation, receives assistance with the complaint sheet, undergoes a preliminary interview, executes a sworn statement or submits a prepared affidavit, and provides supporting documents or devices for examination when needed. The listed government fee for this initial service is none, and the estimated total processing time is about one hour and ten minutes. (National Bureau of Investigation)
Your complaint should include:
- Your full name and contact details
- The scammer’s name, alias, username, page, phone number, or email
- The receiving bank or e-wallet details
- The amount and transaction reference number
- A clear timeline
- Screenshots and receipts
- Your bank or e-wallet ticket number
- Names of witnesses, if any
- The loss suffered
For criminal complaints, you may be asked to execute a complaint-affidavit. An affidavit is a sworn written statement of facts. It should be accurate, chronological, and supported by attachments.
Step 4: Report to the Cybercrime Investigation and Coordinating Center or I-ARC Hotline
The Cybercrime Investigation and Coordinating Center, together with other agencies, supports centralized scam reporting through the Inter-Agency Response Center or I-ARC Hotline 1326. Public advisories describe it as a government hotline for reporting online scams, phishing, text scams, romance scams, impersonation, investment fraud, and related cybercrimes. (ScamWatch Pilipinas) (Philippine Information Agency)
This can be useful for quick reporting, referral, and guidance. However, for money recovery, you should still report directly to your bank or e-wallet and file the appropriate law enforcement complaint when the loss is significant.
Step 5: Escalate to BSP-CAM if the Bank or E-Wallet Does Not Act Properly
If your bank, e-wallet, or financial institution does not respond, gives an unclear answer, or refuses to act on a proper complaint, you may escalate to the Bangko Sentral ng Pilipinas through its Consumer Assistance Mechanism.
The BSP says consumers may file through BSP Online Buddy, also called BOB, and may also use channels such as email, postal mail, telephone, or walk-in assistance. (Bureau of the Treasury)
Before escalating, prepare:
- Summary of the concern
- Resolution requested
- Contact details
- Copy of your complaint to the bank or e-wallet
- Reply from the bank or e-wallet, if any
- Supporting documents such as receipts, screenshots, and reference numbers
The BSP explains that BOB can immediately provide a reference number, while postal concerns are evaluated and responded to within seven banking days. The BSP may evaluate the concern, respond, or refer it to the supervised financial institution for appropriate action. (Bureau of the Treasury)
Documents and Evidence to Prepare
| Document or evidence | Why it matters | Practical tip |
|---|---|---|
| Valid government ID | Confirms your identity as complainant | Bring original and photocopy |
| Transaction receipt | Proves amount, date, time, and reference number | Download PDF or screenshot from the app |
| Bank or e-wallet statement | Shows the debit and account used | Cover unrelated transactions only if necessary |
| Receiving account details | Helps trace or flag the funds | Include account number, e-wallet number, QR code, account name |
| Chat screenshots | Shows promises, deception, and payment instructions | Capture the full screen with username and timestamp |
| Profile, page, or listing link | Helps identify the online source | Copy the URL before the page disappears |
| Email or SMS messages | Useful in phishing and impersonation scams | Keep original messages; do not just forward screenshots |
| Complaint ticket numbers | Shows you reported promptly | Keep all bank, e-wallet, BSP, PNP, or NBI references |
| Complaint-affidavit | Formal sworn statement for investigation | Attach evidence and label each annex clearly |
| Device used | May be needed for technical examination | Do not factory reset if evidence is stored there |
Practical Timelines, Fees, and Expectations
| Stage | Usual timing | Fees | What to expect |
|---|---|---|---|
| Bank or e-wallet report | Immediately to several business days | Usually none | Ticket creation, fraud review, possible account flagging |
| Temporary hold under AFASA | Up to 30 calendar days unless extended by court | None to victim | Applies when disputed funds can still be held under the law and BSP rules |
| NBI Cybercrime initial complaint | Around the same day for intake, depending on queue | No listed fee for the initial Citizen’s Charter service | Complaint sheet, interview, affidavit, evidence review |
| PNP cybercrime complaint | Depends on office, queue, and completeness of evidence | Usually none for filing | Complaint intake and possible investigation |
| BSP-CAM escalation | BOB gives quick reference; other channels vary | None | BSP may evaluate, respond, or refer to the financial institution |
| Criminal investigation and prosecution | Weeks to months or longer | Filing is generally free, but private expenses may arise | Depends on traceability, evidence, witnesses, and cooperation |
| Civil recovery | Months or longer | Court and incidental costs may apply | Useful only when the responsible person is identifiable and collectible |
Recovery is never automatic. If the funds are still in the receiving account, quick reporting improves the chance of preservation or hold. If the money has already been withdrawn or layered through several accounts, investigation may still proceed, but recovery becomes harder.
Common Pitfalls That Hurt Online Fraud Reports
Waiting Too Long
Many victims wait because the scammer promises a refund. This is a common tactic. The delay gives the scammer time to empty the account, move funds, delete chats, deactivate numbers, and change usernames.
Reporting Only to Facebook, Telegram, TikTok, or the Marketplace Platform
Platform reports may remove a page or account, but they usually do not preserve financial records or freeze funds. Always report to the bank or e-wallet and, for serious cases, to law enforcement.
Deleting Messages Out of Embarrassment
Many victims delete chats because they feel ashamed. Do not do this. Fraud cases often depend on the exact words used by the scammer, the timing of the payment instruction, and the account details provided.
Posting the Account Number Publicly and Accusing Someone Online
Public warning posts may feel satisfying, but they can create risks. You might name a mule, a hacked account holder, or a person whose identity was misused. Public accusations can also alert the scammer and may raise privacy or defamation issues. Report first through proper channels.
Assuming the Account Name Is the Real Scammer
The account holder may be:
- The actual scammer
- A paid money mule
- A recruited “agent”
- A person whose identity was stolen
- A person who lent or sold an account
- A fake account opened with fraudulent documents
AFASA addresses this problem by penalizing money muling and related conduct. (Lawphil)
Sending More Money to “Recover” the First Payment
Scammers often ask for additional fees after the first payment:
- Withdrawal fee
- Verification fee
- Tax clearance
- Anti-money laundering clearance
- Customs fee
- Refund processing fee
- Account unlocking fee
Do not send more. Treat each new fee request as another warning sign.
Filing a False or Exaggerated Report
Be accurate. Do not invent facts, inflate the amount, or identify a person as the scammer without basis. AFASA penalizes malicious false reporting. (Lawphil)
What If You Are an OFW, Foreigner, or Outside the Philippines?
You can still report if the money went to a Philippine bank or e-wallet, or if the scam involved Philippine financial systems, accounts, or victims. AFASA provides jurisdiction when elements are committed in the Philippines, when Philippine systems or infrastructure are used, when damage is caused to a person in the Philippines, or when the financial account is maintained with a Philippine financial institution. (Lawphil)
Practical steps if you are abroad:
- Report through your bank or e-wallet’s official online or international support channel.
- Save transaction records in PDF or official downloadable format.
- Prepare a written chronology using Philippine time if possible.
- File an online or email report with the relevant Philippine cybercrime office if available.
- If a sworn affidavit is required, ask whether it must be notarized before a Philippine Embassy or Consulate, or notarized locally and apostilled.
Philippine embassies and consulates can notarize certain documents such as affidavits and special powers of attorney for use in the Philippines. Some consular guidance also explains that documents executed abroad may need consular notarization or local notarization with apostille, depending on the country and document. (philippineembassy-dc.org) (melbournepcg.org)
A Special Power of Attorney may be useful if you need a trusted person in the Philippines to submit documents, attend follow-ups, or coordinate with offices on your behalf.
Can You File a Civil Case or Small Claims Case?
A criminal complaint focuses on investigation and punishment. A civil case focuses on recovering money or damages.
Small claims may be possible if:
- You know the defendant’s true identity and address
- The claim is for payment or reimbursement of money
- The amount is within the small claims threshold
- The case is supported by documents
The Supreme Court has updated small claims coverage to include civil money claims up to ₱1,000,000. (Supreme Court of the Philippines)
But small claims is often not practical when the scammer used a fake name, mule account, or unknown address. In those cases, law enforcement tracing is usually needed first.
Civil remedies may also be based on general Civil Code principles. Article 1170 makes persons liable for damages when they are guilty of fraud, negligence, delay, or violation of obligations, while Article 2176 covers liability for damage caused by fault or negligence. (Lawphil) (Lawphil)
Frequently Asked Questions
Can I recover money if I only have the scammer’s e-wallet number or bank account?
Possibly, but it is not guaranteed. The e-wallet number or bank account is still very important because it can help institutions trace, flag, or preserve records. Report immediately to your own bank or e-wallet, the receiving institution if known, and law enforcement for serious losses.
Should I report first to the bank, e-wallet, PNP, or NBI?
Report to your bank or e-wallet first or at the same time because funds can move quickly. Then file with the PNP Anti-Cybercrime Group or NBI Cybercrime Division, especially if the amount is significant, the scammer is still active, or multiple victims are involved.
What if I voluntarily sent the money?
You should still report. Many scams involve voluntary transfers induced by deception. That may still fall under estafa, cybercrime, social engineering, or AFASA-related offenses. However, recovery may be harder than in a clearly unauthorized account takeover.
Can the bank or e-wallet give me the scammer’s full name and address?
Usually, no. Financial institutions generally cannot disclose another customer’s private information directly to you. But they can preserve records, coordinate with other institutions, respond to regulators, and act on proper law enforcement or court processes.
Is reporting online fraud free in the Philippines?
Reporting to your bank or e-wallet is usually free. The NBI Cybercrime Division’s Citizen’s Charter lists no government fee for the initial complaint or request for investigation process. (National Bureau of Investigation) You may still spend on printing, notarization, transportation, affidavits, document authentication, or later court-related costs.
How long can a bank or e-wallet hold suspicious funds?
Under AFASA, disputed funds may be temporarily held for the period prescribed by the BSP, but not more than 30 calendar days unless extended by a court. (Lawphil) This depends on the facts, timing, whether funds remain, and applicable BSP rules.
Do screenshots count as evidence?
Screenshots can help, but they are stronger when supported by original messages, transaction records, device data, URLs, email headers, and witness statements. Electronic evidence must still be authenticated, so preserve the original source whenever possible. (Lawphil)
What if the scammer used a fake name?
Still report. Fake names are common. Investigators and financial institutions may rely on transaction records, device information, SIM details, IP logs, account opening records, linked accounts, and withdrawal patterns. AFASA specifically addresses mule accounts and fraudulent use of financial accounts.
Can I report a scammer if I am outside the Philippines?
Yes, especially if the payment went to a Philippine bank or e-wallet, the victim is in the Philippines, or Philippine financial systems were used. You may need a notarized or consularized affidavit, or a special power of attorney for someone in the Philippines to assist with filing and follow-ups.
What if my bank or e-wallet refuses to help?
Ask for a written explanation, case number, and final response. Then escalate to the BSP Consumer Assistance Mechanism with your complaint summary, requested resolution, bank or e-wallet ticket number, reply if any, and supporting documents. (Bureau of the Treasury)
Key Takeaways
- Report online fraud immediately because funds can disappear within minutes.
- Bank and e-wallet details are crucial evidence: account number, mobile number, account name, QR code, merchant ID, reference number, amount, date, and time.
- Report first to your own bank or e-wallet, then to the receiving institution if known.
- For serious cases, file with the PNP Anti-Cybercrime Group or NBI Cybercrime Division.
- AFASA, RA 12010 of 2024, gives Philippine law stronger tools against money muling, social engineering, and disputed financial transactions.
- Banks and e-wallets usually cannot reveal the account owner directly to you, but regulators and law enforcement can request or verify information through proper channels.
- Preserve original electronic evidence, not just screenshots.
- Escalate to BSP-CAM if the financial institution fails to respond properly.
- Do not post reckless accusations online, delete evidence, or send more money to recover the first payment.
- Recovery is possible in some cases, but speed, evidence quality, and proper reporting greatly affect the outcome.