Fraudulent Online Investment Schemes

Background

The Cyber Security Authority (CSA) has noted a surge in fraudulent online investment schemes operating under various aliases or pseudonyms. These scammers lure victims with promises of high returns on investments and primarily use social media for advertisements and mobile money for transactions. In the first six (6) months of 2026, the CSA recorded 352 of such cases, amounting to a total financial loss of GHS 3,429,447

Modus Operandi

  • In their bid to appear credible, threat actors falsely present their schemes as subsidiaries of established foreign companies, e.g. Darazz, a legitimate e-commerce company headquartered in Pakistan.
  • The scammers ran targeted advertisements on social media platforms where eventual victims are encouraged to invest money. In some cases, victims are told their investments will fund crypto-mining equipment leases or online business tasks.
  • Victims are promised substantial returns, but once funds are transferred, they neither receive any returns nor recover their initial investment.
  • The threat actors frequently rebrand themselves to evade detection by law enforcement agencies, local regulators and users. The latest names being employed include Darazz, Daily trade, Ghstore, KUKA, and Edollar

Recommendation

  • Be cautious of online platforms promising unusually high returns on investments.
  • Refrain from joining WhatsApp groups or responding to unsolicited messages claiming affiliation with reputable organisations.
  • Always verify the legitimacy and credibility of investment opportunities by consulting official channels or recognised regulatory bodies.
  • Report any suspicious contacts or fraudulent schemes to the CSA for further investigations.

Contact the Cyber Security Authority

The CSA has a 24-hour Cybersecurity/Cybercrime Incident Reporting Points of Contact (PoC) for reporting cybercrimes and for seeking guidance and assistance on online activities, Call or Text – 292, WhatsApp – 0501603111, Email – report@csa.gov.gh

Issued by Cyber Security Authority
July 06, 2026
Ref: CSA/CERT/MPA/2026-07/01