The Cyber Security Authority (CSA) has issued a public alert over a surge in scams involving the impersonation of popular brands and service providers on Google Maps and Google Search.
According to the Authority, cybercriminals are creating fake business profiles and manipulating search results to deceive the public. The targeted brands include Pizza Hut, Pizzaman/Chickenman, Hisense, Bel Aqua, Papaye, Burger King, as well as some banks, airlines, hotels, courier services, and even government agencies.
In a statement issued on Friday, August 29, the CSA explained that,
“Cybercriminals create or alter Google Maps business listings of popular companies, banks, hotels, airlines, courier services, and government agencies. The fraudulent listings include fake phone numbers, emails, and websites.”
It noted that when users search for a company’s details online, they are often presented with the fraudulent contact information at the top of Google results.
Scammers then pose as customer service agents and trick unsuspecting victims into sharing one-time passwords (OTPs) or PINs, which are later used to withdraw funds or make payments for undelivered goods and services.
The CSA is urging the public to cross-check phone numbers and other contact details from official company websites rather than relying solely on Google Search or Maps.
It cautioned that fraudulent listings may sometimes appear above legitimate ones, including paid “Ad” results, and said the need for users to treat such search results with care. The Authority also warned the public never to share sensitive information such as PINs or OTPs with strangers online.
The CSA added that members of the public should report suspicious or fake listings directly to Google, while also notifying the Authority to enable swift action.
The Authority also called on institutions and businesses to actively monitor their online presence to prevent impersonation. It advised organisations to regularly search for their brands online, including on Google and Google Maps, to quickly identify fraudulent listings or fake websites.
Businesses were also encouraged to publish verified contact details on official platforms and, where possible, acquire toll-free numbers or dedicated ranges to build public confidence.
The CSA reminded the public that it operates a 24-hour incident reporting centre where cybercrimes can be reported via Call or Text on 292, WhatsApp on 0501603111, or email at report@csa.gov.gh.