ADVERTISEMENT
Manila Bulletin devider Business devider Banking & Finance devider InstaPay's speed blamed for rise in cyber fraud

InstaPay's speed blamed for rise in cyber fraud

Published Mar 11, 2026 03:54 pm
Rapid adoption of real-time digital payments in the country has triggered a corresponding surge in cyber fraud, as criminals exploit the instantaneous nature of systems like InstaPay to move and withdraw illicit funds before they can be traced.
In a briefing on Wednesday, March 11, Jasmine Alansalon-Gonzales, head of products at CIBI Information, Inc., said that InstaPay, which facilitates immediate electronic fund transfers for retail transactions, has become the primary target for fraudsters due to its lack of clearing delays.
Unlike PESONet, which processes transactions in batches, InstaPay moves money in seconds, making the recovery of stolen funds nearly impossible once a transaction is initiated.
“With InstaPay, transferring to any wallet is instantaneous. Once you send it, it happens in a second,” Gonzales told reporters.
Gonzales noted that the speed of the system—while convenient for consumers—is precisely what creates the security vulnerability.
When funds are received and withdrawn instantly, the window for financial institutions to intervene effectively closes, she said.
Recall that digital payment transactions in the Philippines surged to nearly ₱25 trillion in 2025, as the volume of electronic fund transfers more than tripled year on year. This was a notable shift in how consumers and businesses navigate the post-pandemic economy.
Data from the Bangko Sentral ng Pilipinas (BSP) showed that combined transactions through the PESONet and InstaPay clearing houses reached ₱24.74 trillion last year, a 42 percent increase from ₱17.42 trillion in 2024.
Transactions channeled through InstaPay surged by 57.3 percent to ₱11.553 trillion. The rapid adoption is clear as transactions more than tripled to 4.7 billion, showing growing reliance on real-time transfers for daily business.
InstaPay facilitates real-time transfers for smaller amounts, typically capped at ₱50,000, making it a staple for retail remittances and online shopping.
To curb the surge in financial fraud, the BSP—under the Anti-Financial Account Scamming Act (AFASA)—ordered all financial institutions it supervises to adopt a more sophisticated mode of verification and eliminate the usage of one-time passwords (OTPs), where cybercriminals gain a foothold.
Citing recent data, FinTech Alliance Ph Founding Chairman Lito Villanueva reported that the value of cyber fraud in 2025 “would already be equivalent to the first quarter of 2026,” tagging it as an “alarming” growth.
Money muling—transferring illegally obtained funds for others, knowingly or not—has become the most common type of fraud, as criminals use these accounts to create layers in the money trail, making the funds harder for authorities to trace.
The fintech industry is complementing AFASA with the creation of the Fraud Intelligence Data Sharing (FIDS) Network, a CIBI-led consortium of institutions, including banks and other financial institutions (FIs), telecommunications firms, and others.
This fraud bureau will help detect fraud, provide alerts, generate fraud scores, and offer case management tools. Villanueva said local banking and fintech giants are part of the pilot of the bureau.
According to the credit bureau, the first batch of institutions includes BDO Unibank Inc., RCBC, Salmon Bank, HSBC, GoTyme Bank, Uno Digital Bank, Maya Bank, and SB Finance, while other entities are also in the pipeline.
“The major banks and leading fintech companies are part of the initial pilot, which will be free for the first six months,” Villanueva said, who is also the executive vice president and chief innovation and inclusion officer at Rizal Commercial Banking Corp. (RCBC).
CIBI President and Chief Executive Officer (CEO) Pia Arellano said this platform is the one used in Korea and Malaysia, which has saved $2 billion in fraud over a span of around a decade, a feat the Philippine fintech industry intends ti replicate. 
ADVERTISEMENT
.most-popular .layout-ratio{ padding-bottom: 79.13%; } @media (min-width: 768px) and (max-width: 1024px) { .widget-title { font-size: 15px !important; } }

{{ articles_filter_1561_widget.title }}

{{ item.title }}
.most-popular .layout-ratio{ padding-bottom: 79.13%; } @media (min-width: 768px) and (max-width: 1024px) { .widget-title { font-size: 15px !important; } }

{{ articles_filter_1562_widget.title }}

{{ item.title }}
.most-popular .layout-ratio{ padding-bottom: 79.13%; } @media (min-width: 768px) and (max-width: 1024px) { .widget-title { font-size: 15px !important; } }

{{ articles_filter_1563_widget.title }}

{{ item.title }}

{{ articles_filter_1564_widget.title }}

{{ item.title }}
.mb-article-details { position: relative; } .mb-article-details .article-body-preview, .mb-article-details .article-body-summary{ font-size: 17px; line-height: 30px; font-family: "Libre Caslon Text", serif; color: #000; } .mb-article-details .article-body-preview iframe , .mb-article-details .article-body-summary iframe{ width: 100%; margin: auto; } .read-more-background { background: linear-gradient(180deg, color(display-p3 1.000 1.000 1.000 / 0) 13.75%, color(display-p3 1.000 1.000 1.000 / 0.8) 30.79%, color(display-p3 1.000 1.000 1.000) 72.5%); position: absolute; height: 200px; width: 100%; bottom: 0; display: flex; justify-content: center; align-items: center; padding: 0; } .read-more-background a{ color: #000; } .read-more-btn { padding: 17px 45px; font-family: Inter; font-weight: 700; font-size: 18px; line-height: 16px; text-align: center; vertical-align: middle; border: 1px solid black; background-color: white; } .hidden { display: none; }
function initializeAllSwipers() { // Get all hidden inputs with cms_article_id document.querySelectorAll('[id^="cms_article_id_"]').forEach(function (input) { const cmsArticleId = input.value; const articleSelector = '#article-' + cmsArticleId + ' .body_images'; const swiperElement = document.querySelector(articleSelector); if (swiperElement && !swiperElement.classList.contains('swiper-initialized')) { new Swiper(articleSelector, { loop: true, pagination: false, navigation: { nextEl: '#article-' + cmsArticleId + ' .swiper-button-next', prevEl: '#article-' + cmsArticleId + ' .swiper-button-prev', }, }); } }); } setTimeout(initializeAllSwipers, 3000); const intersectionObserver = new IntersectionObserver( (entries) => { entries.forEach((entry) => { if (entry.isIntersecting) { const newUrl = entry.target.getAttribute("data-url"); if (newUrl) { history.pushState(null, null, newUrl); let article = entry.target; // Extract metadata const author = article.querySelector('.author-section').textContent.replace('By', '').trim(); const section = article.querySelector('.section-info ').textContent.replace(' ', ' '); const title = article.querySelector('.article-title h1').textContent; // Parse URL for Chartbeat path format const parsedUrl = new URL(newUrl, window.location.origin); const cleanUrl = parsedUrl.host + parsedUrl.pathname; // Update Chartbeat configuration if (typeof window._sf_async_config !== 'undefined') { window._sf_async_config.path = cleanUrl; window._sf_async_config.sections = section; window._sf_async_config.authors = author; } // Track virtual page view with Chartbeat if (typeof pSUPERFLY !== 'undefined' && typeof pSUPERFLY.virtualPage === 'function') { try { pSUPERFLY.virtualPage({ path: cleanUrl, title: title, sections: section, authors: author }); } catch (error) { console.error('ping error', error); } } // Optional: Update document title if (title && title !== document.title) { document.title = title; } } } }); }, { threshold: 0.1 } ); function showArticleBody(button) { const article = button.closest("article"); const summary = article.querySelector(".article-body-summary"); const body = article.querySelector(".article-body-preview"); const readMoreSection = article.querySelector(".read-more-background"); // Hide summary and read-more section summary.style.display = "none"; readMoreSection.style.display = "none"; // Show the full article body body.classList.remove("hidden"); } document.addEventListener("DOMContentLoaded", () => { let loadCount = 0; // Track how many times articles are loaded const offset = [1, 2, 3, 4, 5, 6, 7, 8, 9, 10]; // Offset values const currentUrl = window.location.pathname.substring(1); let isLoading = false; // Prevent multiple calls if (!currentUrl) { console.log("Current URL is invalid."); return; } const sentinel = document.getElementById("load-more-sentinel"); if (!sentinel) { console.log("Sentinel element not found."); return; } function isSentinelVisible() { const rect = sentinel.getBoundingClientRect(); return ( rect.top < window.innerHeight && rect.bottom >= 0 ); } function onScroll() { if (isLoading) return; if (isSentinelVisible()) { if (loadCount >= offset.length) { console.log("Maximum load attempts reached."); window.removeEventListener("scroll", onScroll); return; } isLoading = true; const currentOffset = offset[loadCount]; window.loadMoreItems().then(() => { let article = document.querySelector('#widget_1690 > div:nth-last-of-type(2) article'); intersectionObserver.observe(article) loadCount++; }).catch(error => { console.error("Error loading more items:", error); }).finally(() => { isLoading = false; }); } } window.addEventListener("scroll", onScroll); });
Join Our Newsletters

Sign up by email to receive news.

© 2025 Manila Bulletin The Nation's Leading Newspaper. All Rights Reserved.