Alerts

Fraudulent Online Business Impersonation Schemes

Background

The Cyber Security Authority (CSA) has noted a growing trend of fraudsters impersonating legitimate businesses by creating fake listings on search engines and online map services. Victims who interact with these fraudulent listings are subsequently socially engineered to part with funds or disclose sensitive personal and financial information. From January 1 to April 26, 2026, the CSA received fifty-four (54) such cases, which have resulted in a total financial loss of GHS 266,195.00

Modus Operandi

  • Threat actors impersonate legitimate businesses on search engines and map platforms by creating fake business profiles with contact channels controlled by the threat actors.
  • Victims who rely on these fake listings end up engaging these fraudsters, believing they are dealing with the authentic service providers.
  • The fraudsters then request sensitive information from the victims under the guise of service processing or payment verification.
  • Victims are often instructed to complete online forms requesting their phone number, mobile network, transaction amount, and mobile money PIN.
  • Once victims submit this information, the malicious actors carry out unauthorized transactions, leading to financial losses.

Recommendation

  • Verify business contact details through official websites or trusted sources before initiating communication.
  • Be cautious of businesses listed on search engines or maps with limited reviews or recently created profiles.
  • Report suspicious listings, contacts, or incidents promptly to the CSA for further investigation.
  • Never disclose sensitive information such as mobile money PINs, OTPs, or banking credentials to anyone.
  • Confirm payment requests directly with verified business representatives using trusted contact details

Contact the Cyber Security Authority

The CSA has a 24-hour Cybersecurity/Cybercrime Incident Reporting Points of Contact (PoC) for reporting cybercrimes and for seeking guidance and assistance on online activities, Call or Text – 292, WhatsApp – 0501603111, Email – report@csa.gov.gh

Issued by Cyber Security Authority
April 30, 2026
Ref: CSA/CERT/MPA/2026-04/01