GCash blocks fake QRPh payment scams to protect digital payments

July 11, 2026
9:32AM PHT

Insider Spotlight

  • GCash has blocked more than 6,700 suspicious accounts linked to QRPh-related scams
  • The e-wallet is intensifying efforts against fake payment pages and fraudulent QR codes used in "quishing" attacks
  • GCash is working with regulators and law enforcement to strengthen protection across the country's digital payments ecosystem

As QRPh continues to reshape how Filipinos pay for everyday purchases, GCash said it is ramping up efforts to combat a growing wave of scams targeting users of QR-based payment systems.

The fintech platform has blocked more than 6,700 suspicious accounts linked to QRPh-related fraud while expanding its monitoring of fake payment pages and fraudulent merchant activities. The move comes as scammers increasingly exploit QR codes to trick consumers into sending money to illegitimate accounts.

Why it matters

Fraud monitoring teams at GCash have observed a rise in "quishing," or QR phishing, where cybercriminals create fake websites that closely resemble legitimate GCash payment pages. 

These scams use QRPh codes to redirect users to malicious payment portals or steal sensitive information while misusing official branding to appear authentic.

Some fraudulent QRPh codes are also embedded in posters, emails, receipts, or messages. Once scanned, they can lead users to fake login pages for e-wallets or banks, or websites that install malicious software on devices, resulting in unauthorized fund transfers.

The big picture

To counter these threats, GCash said it immediately blocks wallets linked to suspicious QRPh activity to prevent scammers from receiving stolen payments. The company also identifies fraudulent websites impersonating official GCash payment pages and escalates them for takedown.

Incident reports are submitted to PH Payments Management Inc. (PPMI) and relevant government agencies to support investigations and enforcement. 

These initiatives complement GCash's ongoing collaboration with the Cybercrime Investigation and Coordinating Center (CICC) and the Bangko Sentral ng Pilipinas (BSP) to strengthen consumer protection and preserve trust in digital payments.

"Scammers are constantly evolving their tactics alongside digital payments, and we are equally committed to staying ahead of these threats," GCash Chief Information Security Officer Miguel Geronilla said. 

"By proactively blocking suspicious accounts, flagging fraudulent payment pages, and reporting these activities to regulators and law enforcement, we help stop these schemes before they can affect more Filipinos."

Geronilla added, "Protecting users is at the core of our platform. We have zero tolerance for those who exploit digital financial services, and we will continue to strengthen our safeguards while working hand in hand with government and industry partners to keep the country's digital payments ecosystem safe and secure."

What users should do

GCash advises users to verify website URLs before making payments, confirm merchant names before approving transactions, avoid unverified websites, and exercise caution when scanning QR codes from unknown sources. 

Suspicious links or payment requests can be reported through the GCash Help Center by chatting with Gigi and selecting "I want to report a scam" or by calling hotline 2882. Users may also report cybercrime incidents to the PNP Anti-Cybercrime Group and the CICC. —-Ramon C. Nocon | Ed: Corrie S. Narisma

Featured News
Explore the latest news from InsiderPH
Saturday, 11 July 2026
Insight to the one percent
© 2024 InsiderPH, All Rights Reserved.