What we know
Background The Cyber Security Authority (CSA) has reported an increase in financial losses linked to online blackmail and sextortion. The CSA recorded 155 reported cases between January and April 2024, with associated losses of GH¢103,663. An updated analysis covering January to April 2025 indicates a slight increase in reported cases but a significant rise in financial losses, reaching GH¢499,044. The data points to increasingly sophisticated methods being employed by cybercriminals and highlights the growing economic impact of such incidents. Modus Operandi The threat actors usually create fake social media profiles using attractive photos to lure victims, often pretending to be someone looking for romantic relationships. After gaining the victim’s trust, they initiate explicit video calls or solicit private photos. These sessions are secretly recorded or saved without the victim’s consent. They then threaten to release the compromising materials unless a ransom is paid, usually via mobile money. In some cases, even after payment is made, the threats continue or escalate. Threat actors then move conversations to encrypted platforms (e.g., WhatsApp, Telegram, Signal) to reduce traceability. Recommendation Avoid accepting friend requests from unknown individuals. Be cautious of quickly progressing online relationships, particularly those requesting intimate content. Never share such content. Avoid sharing intimate content with strangers online, even if they seem trustworthy. Keep social media accounts private, and limit who can view your content. Avoid capturing or storing nude images or videos of yourself on any device. Immediately cease all communication with the threat actors should you fall victim. Do not pay any ransom, it encourages repeated demands and does not guarantee deletion of the content. Preserve all evidence, take screenshots, record usernames, URLs, messages, and payment demand. Report incident to the CSA and inform a trusted family member or counselor for emotional support. Contact the Cyber Security Authority The CSA has a 24-hour Cybersecurity/Cybercrime Incident Reporting Points of Contact (PoC) for reporting cybercrimes and for seeking guidance and assistance on online activities, Call or Text – 292, WhatsApp – 0501603111, Email – report@csa.gov.gh Issued by Cyber Security Authority May 2, 2025 Ref: CSA/CERT/MPA/2025-05/01
Safety advice
- Stop using or purchasing the product if the notice asks you to.
- Keep receipts, batch numbers and packaging — they help with returns or investigations.
- Share this alert with anyone who might be affected, especially relatives and colleagues.
- If you believe you’ve been harmed, contact the official source or a relevant authority.