MANILA, Philippines — Digital scammers targeting Filipino consumers are playing a high-volume numbers game, shifting away from massive individual hits toward broad, small-ticket extractions. A new global data release reveals that while digital fraud attempts in the Philippines vastly outpace global averages, the actual financial damage per successful scam is significantly lower than international baselines.
The data underscores a strategic shift among modern cybercriminals operating across the country’s highly active digital ecosystem.
The comprehensive landscape analysis, featured in credit insights firm TransUnion’s “Top Fraud Trends” report for the first half of 2026, highlighted an intense gap between localized fraud exposure and the financial value of the stolen assets:
- The Individual Damage: Based on a comprehensive survey of 821 local consumers conducted between late November and early December last year, the median amount stolen by fraudsters per incident in the Philippines stood at $850 (approximately ₱50,000). This is dramatically lower than the global median loss of $1,671 (roughly ₱98,000).
- The Persistent Threat: Despite lower single-incident yields, the frequency of these attacks is staggering. The country’s suspected digital fraud rate reached 4.1 percent in 2025, marking the sixth consecutive year that the Philippines has exceeded the global average rate (which sits at 3.8 percent).
[GLOBAL BASELINES] ──► Lower Exposure Rates (53%) ──► Higher Median Losses ($1,671 / ₱98,000)
[PHILIPPINE TRENDS] ──► Higher Exposure Rates (72%) ──► Lower Median Losses ($850 / ₱50,000)
“Our data indicates that fraud in the Philippines is driven more by scale than severity. These insights point to a landscape characterized by more frequent, lower-value scams across digital channels and industries, rather than isolated big-ticket cases. The breadth and frequency of these incidents make digital fraud a persistent concern.” — Yogesh Daware, Chief Commercial Officer of TransUnion Philippines
The report linked the high volume of attacks to the country’s rapid mobile adoption, noting that an overwhelming 91 percent of Filipinos now routinely manage sensitive administrative profiles online.
[ TOP DIGITAL FRAUD VECTORS IN PH ]
│
┌───────────────────────────────┼───────────────────────────────┐
▼ ▼ ▼
[ PHISHING ] [ SMISHING ] [ THIRD-PARTY SCAMS ]
• 45% of targeted cases. • 38% of targeted cases. • 28% of targeted cases.
• Fake emails, posts, or • Deceptive SMS texts • Rogue storefronts on
cloned QR codes. stealing bank data. legitimate e-commerce sites.
Data from the Bangko Sentral ng Pilipinas (BSP) mirrored these concerns, confirming that social engineering schemes—tactics where criminals trick or pressure victims into handing over sensitive personal information—made up 76 percent of all registered fraud losses nationwide over the past year. Traditional hacking accounted for 13 percent, while card-not-present fraud dropped down to 8 percent.
Because modern scams focus heavily on harvesting user credentials, TransUnion’s transaction monitoring network exposed that vulnerability is highest before a user even makes a purchase. The fraud risk rate in the Philippines spiked heavily at the account login stage (6.1 percent), vastly overshadowing the global baseline of 4.3 percent. This was followed by the account creation phase at 4.5 percent and actual financial checkout transactions at a low 1.1 percent.
On the commercial front, the logistics and delivery sector recorded the highest concentration of fraudulent activity at 8.5 percent. This reflects a heavy pattern of scammers targeting e-commerce buyers with fake delivery updates, tracking link errors, and cash-on-delivery (COD) authentication scams.
Daware warned that because AI-powered tools are now making it incredibly simple for bad actors to generate highly convincing phishing copies at a massive scale, digital fraud in the Philippines has evolved into an identity verification crisis. Moving forward, the survival of digital commerce will depend heavily on whether local organizations can implement multi-layered identity defenses without slowing down the consumer login experience.
