If someone is using your name, ID, mobile number, or SIM registration details for scams in the Philippines, treat it as both a telecommunications complaint and a possible cybercrime, fraud, or data privacy incident. The right first step depends on what happened: a suspicious text with no loss, a scam attempt using your name, a lost SIM, an unauthorized SIM registration, or an actual money loss through a bank or e-wallet. This guide explains where to report SIM card identity misuse and scam attempts, what documents to prepare, what laws apply, and how to preserve evidence so your complaint is taken seriously.
What “SIM card identity misuse” means in the Philippines
SIM card identity misuse happens when another person uses your personal information, ID, selfie, mobile number, or SIM registration data without authority. It can appear in several ways:
- A SIM was registered using your name or ID without your consent.
- A scammer sends texts pretending to be you, your company, your bank, a government office, or a telco.
- Someone uses a stolen or lost SIM to access your OTPs, e-wallet, banking app, email, or social media.
- A scammer uses a registered SIM to send phishing links, fake job offers, fake parcel notices, “SIM expiry” messages, or fake bank alerts.
- A person opens or uses a bank account or e-wallet under another person’s identity after obtaining personal information through SMS, calls, or chat.
Under the SIM Registration Act, all SIM users must register with their public telecommunications entity, or PTE, before activation. The law also requires telcos to provide reporting mechanisms for potentially fraudulent texts or calls and to deactivate SIMs used for fraudulent communications after due investigation. (Supreme Court E-Library)
Why reporting matters even if you did not lose money
Many people ignore scam texts because “wala namang nakuha.” But reporting still matters because:
- The number may be blocked or deactivated.
- Your report may help link related complaints against the same sender.
- You create a paper trail in case your identity is later used in a bigger scam.
- Law enforcement may need a sworn complaint before subscriber information can be requested from the telco.
- Your bank or e-wallet may need proof that you reported quickly if funds were stolen.
The NTC has clarified in an FOI response that it does not itself identify, track, or ascertain the owners of cellphone numbers; its role is generally to refer complaints to telcos for blocking or appropriate action, while more serious cases should be handled with telcos and law enforcement. (www.foi.gov.ph)
Legal basis: Philippine laws that may apply
Republic Act No. 11934, or the SIM Registration Act
The SIM Registration Act requires SIM registration and covers both physical SIMs and e-SIMs. It defines spoofing as transmitting misleading or inaccurate information about the source of a call or text with intent to defraud, cause harm, or wrongfully obtain anything of value. (Supreme Court E-Library)
The law penalizes several acts relevant to identity misuse:
| Act | Possible consequence under RA 11934 |
|---|---|
| Using false or fictitious information, fictitious identity, or fraudulent ID documents to register a SIM | Imprisonment of 6 months to 2 years, or fine of ₱100,000 to ₱300,000, or both |
| Spoofing a registered SIM with intent to defraud, cause harm, or wrongfully obtain value | Imprisonment of not less than 6 years, or fine of ₱200,000, or both |
| Selling a stolen SIM | Imprisonment of 6 months to 2 years, or fine of ₱100,000 to ₱300,000, or both |
| Selling or transferring a registered SIM without complying with registration requirements | Imprisonment of 6 months to 6 years, or fine of ₱100,000 to ₱300,000, or both |
A case under RA 11934 does not prevent prosecution under the Revised Penal Code or other special laws. (Supreme Court E-Library)
Republic Act No. 10175, or the Cybercrime Prevention Act of 2012
If the scam involves SMS, messaging apps, fake websites, phishing links, online banking, e-wallets, or social media, RA 10175 may apply.
One important offense is computer-related identity theft, which involves the intentional acquisition, use, misuse, transfer, possession, alteration, or deletion of identifying information belonging to another person. (Lawphil)
RA 10175 is also important because crimes under the Revised Penal Code or special laws may carry a higher penalty when committed through information and communications technology.
Revised Penal Code: estafa, threats, and falsification
A scam using a SIM may also be charged under the Revised Penal Code.
The most common is estafa or swindling under Article 315. Estafa generally involves deceit or abuse of confidence that causes damage to another person. The Revised Penal Code states that a person who defrauds another by the means listed in Article 315 may be punished for swindling. (Lawphil)
Depending on the facts, other offenses may also be relevant:
- Grave threats or light threats if the message threatens harm.
- Unjust vexation for repeated harassment.
- Falsification if IDs, documents, or electronic records were forged.
- Other deceits under Article 318 if the fraud does not neatly fit Article 315.
Republic Act No. 10173, or the Data Privacy Act of 2012
If your personal data, government ID, selfie, phone number, address, bank details, or other identifying information was collected, disclosed, or used without authority, the Data Privacy Act may apply.
The law defines personal information as information from which an individual’s identity is apparent or can be reasonably and directly ascertained. Sensitive personal information includes government-issued identifiers, licenses, health records, tax returns, and similar data. (National Privacy Commission)
The Data Privacy Act also requires personal information controllers to implement reasonable security measures and to notify the National Privacy Commission and affected data subjects when sensitive personal information or other information that may enable identity fraud is reasonably believed to have been acquired by an unauthorized person and creates a real risk of serious harm. (National Privacy Commission)
Republic Act No. 12010, or the Anti-Financial Account Scamming Act
If the SIM scam led to unauthorized access to a bank account, credit card, e-wallet, payment app, or similar account, RA 12010, the Anti-Financial Account Scamming Act, may apply.
This law covers financial accounts, including bank accounts, credit card accounts, e-wallets, and other accounts used for financial products or services. It penalizes money muling and social engineering schemes, including misrepresenting oneself as acting on behalf of an institution or using electronic communications to obtain another person’s sensitive identifying information. (Lawphil)
A practical point for victims: under RA 12010, institutions may temporarily hold funds subject of a disputed transaction for a period prescribed by the BSP, not exceeding 30 calendar days unless extended by a court. (Lawphil)
Where to report SIM card identity misuse and scam attempts
1. Report scam texts or calls to your telco
Start with your telco if the issue involves spam, scam texts, suspicious calls, unauthorized SIM use, or a lost SIM.
| Telco-related issue | Where to start |
|---|---|
| Suspicious SMS or call | Telco scam/spam reporting page, app, hotline, or verified social media channel |
| Lost or stolen SIM | Telco store or customer support for blocking/replacement |
| SIM registered under your name without authority | Telco customer support, then NTC if unresolved |
| Scam text pretending to be your telco | Telco fraud reporting channel and NTC |
| OTPs intercepted or SIM swap concern | Telco hotline/store immediately, then bank/e-wallet and law enforcement if accounts were accessed |
For Globe, the official #StopSPAM page allows users to report SMS spam or scams, fake websites, and fake social media accounts, and Globe states that suspicious calls or messages may also be reported through the GlobeOne app. (Globe Telecom)
For Smart, Smart’s help page advises subscribers to report suspicious SMS or calls through official verified social media channels or by calling *888. (Smart Help)
For DITO, use the DITO app live chat, official channels, or hotline listed in DITO’s official help channels. DITO has also advised users not to click suspicious links and not to assume a text is legitimate just because it appears to come from a familiar number. (DITO)
2. Report to the National Telecommunications Commission
The NTC is the main regulator for telecommunications complaints. It can receive complaints involving text scams, spam, illegal or threatening messages, lost or stolen SIM concerns, and telco service issues.
Based on NTC guidance, complaints on text scam/text spam and illegal or threatening messages may be submitted through the NTC’s complaint pages. For SIM registration concerns, NTC has referred the public to its 24/7 consumer hotline 1682 or DICT’s complaint center hotline 1326. (www.foi.gov.ph)
The Philippine Information Agency summarized NTC guidance using the acronym B.I.R.D.: block, ignore, report, and delete. The same guidance warns users not to interact, reply, or click scam links. (Philippine Information Agency)
3. Report scam SMS through the eGov app or CICC hotline
The Cybercrime Investigation and Coordinating Center (CICC) and Scam Watch Pilipinas have encouraged the public to report SMS scams and suspicious messages through the eGov mobile app’s eReport feature. Victims of cyber fraud are advised to call the Inter-Agency Response Center hotline 1326. Reports sent through the eGov app are forwarded to the NTC for blocking action. (Philippine News Agency)
Use this route when:
- You received a scam SMS but did not lose money.
- You want the suspicious number reported quickly for blocking.
- You are unsure whether the incident should go first to NTC, telco, or cybercrime authorities.
4. Report to PNP Anti-Cybercrime Group or NBI Cybercrime Division
Use law enforcement when there is identity theft, threats, unauthorized account access, actual financial loss, repeated harassment, phishing, fake accounts, or organized scam activity.
You may report to:
- PNP Anti-Cybercrime Group (PNP ACG) or the nearest Regional Anti-Cybercrime Unit.
- NBI Cybercrime Division or NBI Regional Cybercrime Center.
- DOJ Office of Cybercrime, especially for coordination and cybercrime-related reports.
The NBI Citizen’s Charter for computer crime victims states that the general public may request investigative assistance from the NBI Cybercrime Division, with no fees listed for the intake steps. The process includes filing a complaint/request, preliminary interview, sworn statements or affidavits, and submission of supporting documents. (National Bureau of Investigation)
5. Report to your bank, e-wallet, or financial institution immediately
If money was taken, do not wait for the police report before notifying your bank or e-wallet. File a fraud dispute immediately through official channels.
Ask for:
- Temporary hold or freezing of suspicious funds, if still traceable.
- Transaction reference numbers.
- A written acknowledgment or case number.
- Account security reset.
- Replacement of compromised cards, passwords, PINs, and devices.
- A copy of the bank or e-wallet’s response.
BSP guidance tells consumers to report unauthorized or suspicious transactions to their bank or financial institution immediately. BSP also provides a Consumer Assistance Mechanism for unresolved complaints with BSP-supervised financial institutions through BOB, email, mail, phone, and walk-in channels. (Bangko Sentral ng Pilipinas)
Step-by-step guide: what to do immediately
Step 1: Do not reply, click, or call back using the link or number in the message
Do not click links, download files, send OTPs, scan QR codes, or reply “STOP” unless the message is from a verified official sender. Scammers often use replies to confirm that your number is active.
If the message claims to be from your bank, e-wallet, delivery company, telco, BIR, SSS, PhilHealth, PSA, immigration office, or court, verify through the agency’s official website, app, branch, or published hotline.
Step 2: Preserve evidence before deleting anything
Take clear screenshots showing:
- Sender number or sender ID.
- Date and time.
- Full message content.
- Link, QR code, or account number mentioned.
- Your mobile number if visible.
- Any follow-up messages or missed calls.
- Transaction receipts if money was sent.
- Bank or e-wallet reference numbers.
- Name and account number of the recipient, if shown.
Do not edit screenshots. If possible, export the SMS thread, record the screen showing the conversation, and keep the original message in your phone until the telco or investigator tells you it is safe to delete.
Step 3: Secure your SIM and accounts
Immediately do the following:
- Change passwords for email, banking apps, e-wallets, social media, and cloud accounts.
- Enable multi-factor authentication that does not rely only on SMS, if available.
- Log out unknown devices from your email, e-wallet, and social accounts.
- Call your telco if your SIM lost signal unexpectedly, especially if you did not request SIM replacement.
- Call your bank or e-wallet if OTPs, alerts, or transactions appear suspicious.
- Request card blocking or account freezing if there is actual financial risk.
A sudden “No Service” signal can be a warning sign of SIM swap or unauthorized replacement, especially if followed by unauthorized banking or e-wallet activity.
Step 4: Report to the telco and NTC
For an ordinary scam text, report first to the telco and NTC/eGov. Include:
- Sender number or sender ID.
- Screenshot.
- Date and time received.
- Your mobile number.
- Whether you clicked the link or sent money.
- Link or destination account, if any.
For a lost or stolen SIM, NTC guidance states that the required documents for blocking a lost cellphone unit or SIM include a valid government ID and an affidavit of loss/undertaking form, submitted through NTC channels or the nearest regional office. (www.foi.gov.ph)
Step 5: File a law enforcement report if there is identity theft, threat, or loss
Go to PNP ACG, the nearest Regional Anti-Cybercrime Unit, NBI Cybercrime Division, or the local police station if urgent.
Bring:
- Valid ID.
- Screenshots and original device.
- SIM card packaging, if available.
- Proof that the SIM or number belongs to you.
- Affidavit-complaint or written narration.
- Bank/e-wallet statements if money was lost.
- Telco complaint reference number.
- NTC/eGov/CICC report reference, if any.
- Names, numbers, account details, links, and usernames used by the scammer.
For threats to life or safety, report to the nearest police station immediately. A barangay blotter may help document harassment, but it does not replace a cybercrime complaint when the matter involves identity theft, online fraud, phishing, or electronic evidence.
Step 6: File with the National Privacy Commission if your personal data was misused
If your ID, selfie, address, birth date, passport, ACR I-Card, bank details, or other personal information was misused or improperly disclosed, consider filing with the National Privacy Commission (NPC).
The NPC requires a formal complaint in a specific format. Its process includes downloading the complaint form, printing and filling it out, having it notarized, and submitting it in person, by courier, or by scanned email. (National Privacy Commission)
This is especially useful when:
- A company or agent mishandled your personal data.
- Your ID was used to register a SIM without consent.
- A telco, payment provider, online lender, delivery platform, or other organization failed to protect your data.
- You need an official privacy complaint separate from a criminal complaint.
Documents to prepare
| Situation | Documents and evidence to prepare |
|---|---|
| Scam text only, no loss | Screenshot, sender number, date/time, link, your number, telco report |
| Lost or stolen SIM | Valid ID, affidavit of loss, SIM ownership proof, police or barangay blotter if available |
| Unauthorized SIM registration | Valid ID, proof of your identity, telco inquiry result, affidavit, screenshots or notices |
| SIM swap or sudden loss of signal | Telco account proof, timeline, screenshots, bank/e-wallet alerts, device logs |
| Money lost through bank/e-wallet | Transaction history, receipts, reference numbers, bank complaint, recipient details, police/NBI/PNP report |
| Misused ID or personal data | Copy of ID used, proof of unauthorized use, screenshots, NPC complaint form, notarized complaint |
| Threatening messages | Screenshots, call logs, recordings if lawfully obtained, witness statements, police blotter, cybercrime complaint |
Sample incident timeline to include in your complaint
A clear timeline helps investigators and customer support teams understand what happened.
Example:
- June 20, 2026, 9:15 AM – I received an SMS from 09XX-XXX-XXXX saying my e-wallet would be deactivated unless I clicked a link.
- June 20, 2026, 9:20 AM – I clicked the link and entered my mobile number, name, and OTP.
- June 20, 2026, 9:25 AM – I received a debit alert for ₱15,000.
- June 20, 2026, 9:30 AM – I called my e-wallet provider and requested account blocking.
- June 20, 2026, 10:15 AM – I reported the sender to my telco and NTC/eGov.
- June 21, 2026 – I filed a cybercrime complaint with PNP ACG/NBI and submitted screenshots and transaction records.
This kind of timeline is often more useful than a long emotional narration because it shows urgency, causation, and evidence.
Common mistakes that weaken SIM scam reports
Deleting the message too early
Deleting the message before taking screenshots or reporting it makes it harder to verify the sender, timestamp, and exact wording.
Posting the scammer’s number publicly without context
Public warning posts may help others, but they can also spread unverified accusations. For stronger evidence, report through telco, NTC, eGov/CICC, PNP ACG, or NBI first.
Sending only a screenshot without a written explanation
A screenshot is useful, but investigators also need your narration: what happened, whether you clicked, what information you gave, whether money was lost, and what action you want.
Waiting too long to report bank or e-wallet fraud
If money was transferred, minutes matter. RA 12010 allows temporary holding of funds subject to disputed transactions within BSP-prescribed rules, but this is most useful when the funds are still traceable. (Lawphil)
Using unofficial hotlines or Facebook pages
Scammers create fake “helpdesk” pages after sending scam texts. Search for the official telco, bank, e-wallet, NTC, BSP, PNP, NBI, CICC, or NPC website yourself instead of using links in the suspicious message.
Special notes for foreigners in the Philippines
Foreign nationals must also register SIMs. Tourists generally need a passport, proof of Philippine address, and return or onward ticket. Foreign nationals with other visas may need a passport, proof of address, and documents such as an Alien Employment Permit, ACR I-Card, school registration/ID, or other applicable documents. Tourist SIM registration is temporarily valid for 30 days and is automatically deactivated after expiration. (Supreme Court E-Library)
Foreigners should keep copies of:
- Passport bio page.
- Visa stamp or visa order.
- ACR I-Card, if applicable.
- Proof of local address, such as hotel booking, lease, or certification.
- SIM registration confirmation.
- Telco receipts or SIM packaging.
If a foreigner’s passport or ACR I-Card was used without consent, report both the SIM issue and the identity misuse. If documents were issued abroad, Philippine agencies may ask for certified, apostilled, or consularized copies depending on the transaction, especially if the complaint later requires foreign records.
What happens after you report?
The process varies, but a typical path looks like this:
| Stage | What usually happens | Practical timeline |
|---|---|---|
| Telco report | Telco reviews screenshot, sender number, and network data | Same day to several days |
| NTC/eGov report | Complaint is logged and may be referred for blocking or telco action | Often fast for blocking, slower for detailed disputes |
| Bank/e-wallet dispute | Provider reviews account access, device, transaction, and recipient details | Same day blocking; investigation may take days or weeks |
| PNP/NBI complaint | Intake, affidavit, evidence review, possible request for preservation or subscriber data | Intake may be same day; investigation can take weeks or longer |
| NPC complaint | Formal notarized complaint is reviewed under NPC rules | Depends on completeness, docketing, mediation, and proceedings |
| Prosecutor’s office | If evidence is sufficient, a complaint may be filed for preliminary investigation | Often months, depending on docket and evidence |
A major bottleneck is that telcos usually cannot simply disclose subscriber information to a private person. Under RA 11934, disclosure of registration information generally requires legal process, such as a subpoena by competent authority based on a sworn complaint involving a specific mobile number used in a crime or malicious, fraudulent, or unlawful act. (Supreme Court E-Library)
Frequently Asked Questions
Can I find out who owns the scammer’s SIM card?
Usually, not directly. Telco subscriber information is confidential. The NTC has stated that it does not itself identify, track, or ascertain cellphone number owners. In serious cases, law enforcement or competent authorities may request information through proper legal process based on a sworn complaint. (www.foi.gov.ph)
Where do I report a scam text in the Philippines?
Report it to your telco, the NTC, and the eGov app’s eReport feature. If you lost money, received threats, or your identity was used, also report to PNP ACG or NBI Cybercrime Division. Victims of cyber fraud may call the CICC/I-ARC hotline 1326. (Philippine News Agency)
What if the scam text says my SIM will expire or be deactivated?
Do not click the link. Verify through your telco’s official app, website, hotline, or store. Scam messages often pretend to be telcos and create urgency to steal OTPs or personal information.
Is using another person’s ID to register a SIM a crime?
Yes. RA 11934 penalizes providing false or fictitious information, using fictitious identities, or using fraudulent identification documents to register a SIM. (Supreme Court E-Library)
What should I do if I accidentally gave my OTP?
Immediately call your bank, e-wallet, telco, and email provider if relevant. Change passwords, log out unknown devices, block compromised accounts, and file a fraud dispute. Then report the incident to law enforcement if money was taken or your identity was used.
Can a barangay handle SIM card scam cases?
A barangay may record a blotter for harassment, threats, or local disputes, but cybercrime, SIM identity misuse, phishing, estafa, and data privacy complaints usually require telco, NTC, PNP ACG, NBI, NPC, or bank/e-wallet action. Do not rely on a barangay blotter alone for online fraud.
Can I report if I am abroad but my Philippine SIM or identity was misused?
Yes. Report through your telco’s online support, NTC/eGov channels, your bank or e-wallet, and PNP/NBI cybercrime channels where available. If you need to submit affidavits from abroad, Philippine authorities may require notarization before a Philippine embassy/consulate or apostille depending on the document and where it will be used.
Will reporting guarantee that I get my money back?
No agency can guarantee recovery. Your chances improve if you report immediately to the bank or e-wallet, provide complete transaction details, and file with law enforcement. RA 12010 gives institutions tools for disputed transactions, including temporary holding of funds within legal limits, but timing is critical. (Lawphil)
Can I file a complaint with the National Privacy Commission?
Yes, if your personal data was misused, maliciously disclosed, improperly processed, or exposed in a way that violates your privacy rights. The NPC requires a formal complaint form, notarization, and submission through its accepted channels. (National Privacy Commission)
Key Takeaways
- Report scam texts even if you did not lose money; they may help block fraudulent numbers and protect others.
- For ordinary scam SMS, report to your telco, NTC, and the eGov app’s eReport feature.
- For actual fraud, identity theft, threats, SIM swap, or money loss, report to PNP ACG or NBI Cybercrime Division.
- If your bank or e-wallet was affected, notify the financial institution immediately and request blocking, investigation, and written acknowledgment.
- If your ID, selfie, passport, ACR I-Card, or personal data was misused, consider a formal complaint with the National Privacy Commission.
- Preserve screenshots, transaction records, reference numbers, and the original message before deleting anything.
- Subscriber identity information is confidential and generally requires proper legal process; private individuals usually cannot simply demand the scammer’s registered name from a telco.
- The main laws that may apply are RA 11934, RA 10175, RA 10173, RA 12010, and the Revised Penal Code provisions on estafa, threats, falsification, or other deceits.