ADVERTISEMENT
Manila Bulletin devider Business devider Banking & Finance devider Philippines-based company, led by Chinese national, sanctioned by US for cyber scams

Philippines-based company, led by Chinese national, sanctioned by US for cyber scams

Published May 30, 2025 05:02 am

At A Glance

  • The company address is in Bonifacio Global City (BGC), Taguig City
The United States (US) Department of the Treasury’s Office of Foreign Assets Control (OFAC) has sanctioned Funnull Technology Inc., a Philippines-based firm, and its Chinese administrator Liu Lizhi, for facilitating massive virtual currency investment scams known as “pig butchering.”
These scams have led to over $200 million in losses reported by US victims alone, with an average cost of more than $150,000 per individual scammed, the US Treasury Department said in a May 29 statement.
“Today’s action underscores our focus on disrupting the criminal enterprises, like Funnull, that enable these cyber scams and deprive Americans of their hard-earned savings. The US is strongly committed to ensuring the continued growth of a legitimate, safe, and secure digital asset ecosystem, including the use of virtual currencies and similar technologies,” Deputy Secretary of the Treasury Michael Faulkender.
In a separate statement, US Department of State spokesperson Tammy Bruce said that the US government “will go after those who misuse virtual currencies and internet services to perpetrate fraud and other crimes.
We will continue to pursue cybercriminals who abuse the US financial sector,” the State Department added.
Funnull provided infrastructure for scam websites by purchasing large volumes of internet protocol (IP) addresses and creating fake domains and web designs used by cybercriminals to impersonate legitimate investment platforms, said the US Treasury.
The company also deployed domain generation algorithms (DGAs) to help scammers quickly switch domains and avoid shutdowns.
In 2024, Funnull reportedly altered open-source web code to secretly redirect users from legitimate sites to online scams and gambling platforms, some of which are linked to Chinese money laundering syndicates, the US Treasury said.
Liu, its administrator, oversaw these operations, managing internal documents and domain assignments for fraudulent use, it added.
The sanctions freeze all US-based assets of Funnull and Liu, and prohibit US persons from engaging with them.
OFAC emphasized that this move targets not only scam operators but also the foreign support infrastructure that sustains their global operations.
The US Federal Bureau of Investigation (FBI) is working alongside OFAC and has released a cybersecurity advisory to help the private sector identify and mitigate threats tied to Funnull’s infrastructure, it said.
According to the US Treasury’s website, Funnull is also known as Fang Neng CDN, with the following registered address: 3rd Avenue and 30th Street, 14th Floor, C6 Road, Purok 5, Net Cube Center, E Square Zone, Lower Bicutan, Fourth District, Taguig City, National Capital Region 1632, Philippines.
The address may have been a combination of two locations in Taguig City: one in Bonifacio Global City (BGC), where the building formerly known as Net Cube—now Three/NEO—is located at the corner of 3rd Avenue and 30th Street; and another in Barangay Lower Bicutan, where C6 Road passes through.
Blockchain data platform Chainalysis noted in a May 29 blog that the FBI Internet Crime Complaint Center’s (IC3) advisory specifically included the IP addresses and infrastructure used by Funnull.
“Funnull was a central player in a network dubbed by security researchers as Triad Nexus, which includes more than 200,000 unique hostnames, many of which are associated with investment scams, fake trading apps, and suspect gambling networks,” Chainalysis said.
Also, “Funnull had direct exposure to Huione Pay, for which the US Department of the Treasury’s Financial Crimes Enforcement Network (FinCEN) recently issued a finding and notice of proposed rulemaking (NPRM) identifying it as a primary money laundering concern,” Chainalysis added.

Related Tags

United States (US) Department of the Treasury Funnull Technology Inc. cyber scams cryptocurrencies
ADVERTISEMENT
.most-popular .layout-ratio{ padding-bottom: 79.13%; } @media (min-width: 768px) and (max-width: 1024px) { .widget-title { font-size: 15px !important; } }

{{ articles_filter_1561_widget.title }}

{{ item.title }}
.most-popular .layout-ratio{ padding-bottom: 79.13%; } @media (min-width: 768px) and (max-width: 1024px) { .widget-title { font-size: 15px !important; } }

{{ articles_filter_1562_widget.title }}

{{ item.title }}
.most-popular .layout-ratio{ padding-bottom: 79.13%; } @media (min-width: 768px) and (max-width: 1024px) { .widget-title { font-size: 15px !important; } }

{{ articles_filter_1563_widget.title }}

{{ item.title }}

{{ articles_filter_1564_widget.title }}

{{ item.title }}
.mb-article-details { position: relative; } .mb-article-details .article-body-preview, .mb-article-details .article-body-summary{ font-size: 17px; line-height: 30px; font-family: "Libre Caslon Text", serif; color: #000; } .mb-article-details .article-body-preview iframe , .mb-article-details .article-body-summary iframe{ width: 100%; margin: auto; } .read-more-background { background: linear-gradient(180deg, color(display-p3 1.000 1.000 1.000 / 0) 13.75%, color(display-p3 1.000 1.000 1.000 / 0.8) 30.79%, color(display-p3 1.000 1.000 1.000) 72.5%); position: absolute; height: 200px; width: 100%; bottom: 0; display: flex; justify-content: center; align-items: center; padding: 0; } .read-more-background a{ color: #000; } .read-more-btn { padding: 17px 45px; font-family: Inter; font-weight: 700; font-size: 18px; line-height: 16px; text-align: center; vertical-align: middle; border: 1px solid black; background-color: white; } .hidden { display: none; }
function initializeAllSwipers() { // Get all hidden inputs with cms_article_id document.querySelectorAll('[id^="cms_article_id_"]').forEach(function (input) { const cmsArticleId = input.value; const articleSelector = '#article-' + cmsArticleId + ' .body_images'; const swiperElement = document.querySelector(articleSelector); if (swiperElement && !swiperElement.classList.contains('swiper-initialized')) { new Swiper(articleSelector, { loop: true, pagination: false, navigation: { nextEl: '#article-' + cmsArticleId + ' .swiper-button-next', prevEl: '#article-' + cmsArticleId + ' .swiper-button-prev', }, }); } }); } setTimeout(initializeAllSwipers, 3000); const intersectionObserver = new IntersectionObserver( (entries) => { entries.forEach((entry) => { if (entry.isIntersecting) { const newUrl = entry.target.getAttribute("data-url"); if (newUrl) { history.pushState(null, null, newUrl); let article = entry.target; // Extract metadata const author = article.querySelector('.author-section').textContent.replace('By', '').trim(); const section = article.querySelector('.section-info ').textContent.replace(' ', ' '); const title = article.querySelector('.article-title h1').textContent; // Parse URL for Chartbeat path format const parsedUrl = new URL(newUrl, window.location.origin); const cleanUrl = parsedUrl.host + parsedUrl.pathname; // Update Chartbeat configuration if (typeof window._sf_async_config !== 'undefined') { window._sf_async_config.path = cleanUrl; window._sf_async_config.sections = section; window._sf_async_config.authors = author; } // Track virtual page view with Chartbeat if (typeof pSUPERFLY !== 'undefined' && typeof pSUPERFLY.virtualPage === 'function') { try { pSUPERFLY.virtualPage({ path: cleanUrl, title: title, sections: section, authors: author }); } catch (error) { console.error('ping error', error); } } // Optional: Update document title if (title && title !== document.title) { document.title = title; } } } }); }, { threshold: 0.1 } ); function showArticleBody(button) { const article = button.closest("article"); const summary = article.querySelector(".article-body-summary"); const body = article.querySelector(".article-body-preview"); const readMoreSection = article.querySelector(".read-more-background"); // Hide summary and read-more section summary.style.display = "none"; readMoreSection.style.display = "none"; // Show the full article body body.classList.remove("hidden"); } document.addEventListener("DOMContentLoaded", () => { let loadCount = 0; // Track how many times articles are loaded const offset = [1, 2, 3, 4, 5, 6, 7, 8, 9, 10]; // Offset values const currentUrl = window.location.pathname.substring(1); let isLoading = false; // Prevent multiple calls if (!currentUrl) { console.log("Current URL is invalid."); return; } const sentinel = document.getElementById("load-more-sentinel"); if (!sentinel) { console.log("Sentinel element not found."); return; } function isSentinelVisible() { const rect = sentinel.getBoundingClientRect(); return ( rect.top < window.innerHeight && rect.bottom >= 0 ); } function onScroll() { if (isLoading) return; if (isSentinelVisible()) { if (loadCount >= offset.length) { console.log("Maximum load attempts reached."); window.removeEventListener("scroll", onScroll); return; } isLoading = true; const currentOffset = offset[loadCount]; window.loadMoreItems().then(() => { let article = document.querySelector('#widget_1690 > div:nth-last-of-type(2) article'); intersectionObserver.observe(article) loadCount++; }).catch(error => { console.error("Error loading more items:", error); }).finally(() => { isLoading = false; }); } } window.addEventListener("scroll", onScroll); });
Join Our Newsletters

Sign up by email to receive news.

© 2025 Manila Bulletin The Nation's Leading Newspaper. All Rights Reserved.