Business Email Compromise (BEC) scams and investment fraud led to the highest cybercrime losses in the year 2024
In a revealing report by the Federal Bureau of Investigation (FBI), it has been uncovered that the most financially devastating internet crimes in the United States are cryptocurrency investment fraud, ransomware attacks, phishing schemes, and large-scale data breaches.
Cryptocurrency investment fraud stands out as particularly costly, with American victims losing over $5.8 billion in a single year, according to the 2024 Internet Crime Report (IC3). This type of fraud is harmful due to its sophistication and the difficulty in tracing and recovering lost funds. The recent record seizure of $225 million by U.S. authorities underscores the scale and complexity of these crimes.
Ransomware attacks have surged dramatically, with complaints in the U.S. increasing by 82% between 2019 and 2021, and ransom payments rising by 449%. These attacks harm organizations by encrypting critical data and demanding ransom payments to restore access, causing severe disruption and financial losses that can reach millions of dollars per incident.
Phishing attacks are another prevalent and costly crime, responsible for nearly 22% of all data breaches reported. These attacks trick individuals or employees into revealing sensitive information, leading to data breaches and financial theft. Notably, phishing has caused losses in the hundreds of millions, exemplified by incidents involving major companies like Facebook and Google which lost around $100 million.
Data breaches also impose enormous costs. The average data breach in the U.S. costs about $9 million, with some breaches affecting millions of individuals, such as the Shields Healthcare breach impacting over 2 million people. Data breaches expose sensitive personal and financial information, leading to identity theft, fraud, and long-term damage to victims and businesses alike.
These crimes are particularly harmful due to:
- Financial losses in the billions, impacting individuals, corporations, and even governments. - Widespread disruption of operations and services, especially in critical sectors like healthcare. - Compromise of sensitive personal data, leading to identity theft and fraud. - Difficulty in tracing and recovering lost funds, especially in cryptocurrency fraud. - Increased costs of mitigation and recovery for victims, including legal, technical, and reputational damage expenses.
Phishing, spoofing, and extortion were the most commonly reported types of internet crimes. However, it is worth noting that several of the most costly crimes, including tech-support fraud, government impersonation, and confidence/romance scams, rely less on malware than on persuasion. This highlights the importance of being vigilant and cautious when sharing sensitive information online.
The FBI's report suggests a need to refocus law enforcement and private-sector investigative resources on SIM-swapping attacks, as losses from these attacks were $26 million compared to $8.9 million from botnets. BEC scams, which are among the crimes that rely less on technical vulnerabilities and more on exploiting human flaws, were also highlighted as a significant concern.
In light of these findings, it is crucial for individuals, businesses, and government agencies to prioritize cybersecurity measures and educate themselves about the various types of internet crimes to protect themselves from becoming victims. Federal agencies have previously warned the public to be on the lookout for BEC scams, and this report underscores the importance of heeding these warnings.
- The astronomical financial losses associated with cryptocurrency investment fraud, amounting to over $5.8 billion in a single year, emphasize the need for enhanced cybersecurity measures.
- Phishing schemes, responsible for nearly 22% of all data breaches, prove costly, causing losses in the hundreds of millions and leading to potential identity theft and fraud.
- Ransomware attacks, with a 449% increase in ransom payments and severe disruption to organizations, underscores the necessity for updates in cybersecurity investing and technology to prevent such financial and operational losses.
%20scams%20and%20investment%20fraud%20led%20to%20the%20highest%20cybercrime%20losses%20in%20the%20year%202024){kind=link}