| Photo by Markus Spiske on Unsplash
NEW YORK – Federal authorities announced a sweeping enforcement action that dismantled hundreds of fraudulent investment domains used to lure Americans into depositing cryptocurrency into fake platforms. According to DOJ officials, the sites were part of coordinated scam compounds operating in Myanmar (Burma), Cambodia, and other parts of Southeast Asia.
The takedown is part of the Scam Center Strike Force, a multi‑agency initiative launched in late 2025 to combat cyber‑enabled fraud and human‑trafficking‑linked scam centers. Officials say the seized domains were designed to mimic legitimate trading platforms, complete with fabricated dashboards, customer service chats, and falsified profit statements.
How DOJ Detected and Seized the Websites
Investigators identified the 503 domains through blockchain‑analysis tools, victim reports, and intelligence from foreign partners. The DOJ confirmed that each domain was seized under a court‑authorized warrant, meaning prosecutors established probable cause that the sites were being used for wire fraud and money laundering.
Once authorized, U.S. law enforcement replaced each site with a federal seizure banner, halting further victimization and preserving digital evidence. Agencies involved included the FBI, U.S. Secret Service, and international cyber units.
A DOJ spokesperson emphasized: “The Scam Center Strike Force continues its work to identify, seize, and forfeit funds involved in money laundering related to scams, so that funds can be returned to victims whenever possible.”
Were Any Filipino‑Linked Sites Included?
Based on available DOJ and media reports, no specific Filipino‑operated or Philippines‑based scam websites were identified among the 503 seized domains. The operations were primarily tied to compounds in Myanmar and Cambodia, often run by Chinese‑national networks.
However, Filipino victims—like many across the diaspora—remain among the targeted groups due to the global reach of these platforms.
Fil‑Am Diaspora Vulnerability: Why the Community Is Targeted
Cybercrime researchers say Filipino Americans are targeted for three key reasons:
- High trust in community referrals. Many scams begin with a “friend of a friend” introduction, making Fil‑Am social networks fertile ground for grooming.
- Strong remittance culture. Scammers exploit the desire to grow savings for family support, retirement, or balikbayan investments.
- High digital engagement. Fil‑Ams are among the most active ethnic groups on messaging apps and social platforms where scammers operate.
In interviews with community advocates, several noted that victims often feel shame or fear of judgment, leading to underreporting. “Fil‑Ams tend to internalize financial loss as personal failure,” one advocate said. “But these scams are engineered by professionals — no one should blame themselves.”
How Fake Investment Sites Operate
The seized domains followed a familiar pattern seen in “pig‑butchering” scams — a term used by investigators to describe the long grooming process scammers use to build trust before financially exploiting victims.
The typical operation includes:
- Initial contact through social media, messaging apps, or misdirected texts (“Hi, is this Anna?”).
- Relationship building, often with a scammer posing as a successful investor or romantic interest.
- Introduction to a fake platform, where victims see fabricated profits and are encouraged to reinvest.
- Pressure to deposit more, sometimes framed as “limited‑time opportunities.”
- Account lockout, withdrawal refusal, or sudden disappearance once large sums are deposited.
The DOJ says many of the workers running these scripts are themselves victims — trafficked into compounds, stripped of passports, and forced to work under threat of violence.
Impact on Victims and Global Fraud Networks
Authorities say the takedown disrupts billions of dollars in attempted fraud. More than $700 million in cryptocurrency linked to these scams has already been restrained through cooperation with exchanges and legal processes.
The DOJ also seized a Telegram recruitment channel with over 6,000 followers, used to lure job seekers—many of whom were later trafficked—into scam compounds.
Officials warn that while the seizure is a major milestone, scam centers continue to adapt, and global cooperation remains essential.
A Brief History of Their Illicit Operations
These scam networks emerged from industrial‑scale compounds in Southeast Asia, where trafficked workers are forced to run online fraud schemes.
The operations typically involve: romance‑style grooming (“pig‑butchering”), fake crypto investment dashboards, high‑pressure reinvestment tactics, and money laundering through layered crypto wallets
Two Chinese nationals—Huang Xingshan and Jiang Wen Jie—were recently charged for managing one such compound in Burma and attempting to expand into Cambodia.
The U.S. State Department has even offered a $10 million reward for information disrupting the Tai Chang scam centers in Burma.
