How to report Phishing, Credit Card Fraud, Ransomware, Elder Fraud, Cyber Bullying and More.

Cyber crime covers a wide range of threats, from identity theft and phishing scams to ransomware and cyber bullying. Promptly and accurately reporting these incidents is crucial for protecting yourself, your business, and others. Understanding the steps for reporting cyber crime can help you take swift action and support law enforcement in investigating and stopping criminals.

 

Here’s a guide to reporting different types of cyber crime:

 

General Reporting

Cyber crime encompasses many incidents, from minor breaches to large-scale attacks.

When reporting cyber crime, including cases that don't fit into specific categories, two reliable resources are crucial:

CISA (Cybersecurity and Infrastructure Security Agency): This government agency focuses on safeguarding U.S. critical infrastructure from cyber attacks.

FBI (Internet Crime Complaint Center - IC3): The FBI's IC3 unit collects data on cyber crime and collaborates with law enforcement to investigate and resolve cases.

 

Dealing with a Hacked Account

A hacked account can result in serious consequences such as personal information loss, financial fraud, and identity theft. If you suspect your online account has been compromised, it's vital to report it immediately to the platform itself to mitigate further damage. Many platforms offer dedicated support teams specialized in recovering hacked accounts. For direct links to resources from popular platforms, visit StaySafeOnline.org.

 

Ransomware

Ransomware is a type of malicious software (malware) that either locks you out of your device or encrypts your data, demanding payment to restore access.

These attacks have become increasingly common, impacting both individuals and businesses. It's crucial to report ransomware incidents to law enforcement agencies like CISA or the FBI. Reporting helps track down criminals and prevents future attacks. Paying the ransom is strongly discouraged, as it often leads to additional targeting or failed data recovery.

 

Identity Theft

Identity theft occurs when someone unlawfully uses your personal information—such as your Social Security number, credit card details, or bank account information—to commit fraud or theft.

This type of crime can result in significant financial loss, damaged credit, and even long-term legal complications, making it essential to act quickly if your identity is stolen.

There are several steps you should take immediately to minimize the damage:

Report the Theft
Contact agencies like the Federal Trade Commission (FTC) to officially report the identity theft. The FTC provides a step-by-step recovery plan through its website, IdentityTheft.gov, which includes filing a report and creating a personal recovery checklist.

Freeze Your Credit
Consider placing a credit freeze with major credit bureaus (Experian, TransUnion, and Equifax) to prevent new accounts from being opened in your name.

Notify Financial Institutions
Contact your bank, credit card companies, and any other financial institutions to report the fraud. Most institutions have fraud protection teams that can help secure your accounts and issue new cards.

Contact Local Law Enforcement
File a police report, especially if your identity was used in a local crime. This report can help you resolve disputes with creditors or institutions down the road.

Agencies like the ID Theft Resource Center (IDTRC) also offer free recovery support. They provide resources and expert advice on securing your personal information and repairing the damage caused by identity theft.

For more information and to begin the recovery process, visit:

Both platforms provide comprehensive tools to help you reclaim your identity and protect yourself from future fraud.

 

Tax-Related Cyber Crime

Cyber criminals frequently target tax filers, using tactics like phishing scams or fraudulent claims to steal tax refunds or gain access to sensitive financial information. These attacks often involve emails, calls, or messages impersonating the IRS, urging victims to disclose personal details under the guise of tax-related issues.

If you encounter suspicious communication claiming to be from the IRS, it’s important to act quickly:

Report Phishing Scams
Forward any phishing emails to the IRS at phishing@irs.gov. Do not click on any links or provide personal information.

Report Tax Fraud
If you believe you've been targeted or have fallen victim to tax fraud, the IRS offers resources to help you report the crime and begin the recovery process. You can complete IRS Form 14039, the Identity Theft Affidavit, to notify the IRS of fraudulent activity on your tax account.

Verify IRS Communication
Remember, the IRS will never contact you by email, text, or social media to request personal or financial information. Official communication is typically sent by mail.

To protect yourself from these scams, you can file your taxes early and monitor your credit regularly for any unusual activity. For additional support, visit the IRS’s Taxpayer Guide to Identity Theft, which provides detailed steps for recovering from tax-related fraud:

Both resources can guide you through securing your tax account and help prevent further attempts by cyber criminals.

 

Credit Card Fraud

Credit card fraud happens when unauthorized charges are made using your card, either by cloning the physical card or stealing your details online. Quick action is crucial to minimize damage. First, contact your credit card provider to block any further charges and request a new card.

Many banks offer fraud protection and may reimburse fraudulent charges. Afterward, report the fraud to the FTC at IdentityTheft.gov to help track the criminals and protect others. You can also place a fraud alert on your credit report through one of the major credit bureaus (Experian, TransUnion, or Equifax).

 

Elder Fraud

Elder fraud is a serious and growing issue, as cyber criminals often target older adults with scams, fake charities, or phishing schemes. These scams can drain retirement savings or even steal identities. If an older adult falls victim to fraud, immediate help is available through the U.S. Department of Justice’s National Elder Fraud Hotline. This service offers support and guides victims through reporting the crime, securing their accounts, and taking legal action if necessary.

 

Social Security Fraud

Social Security fraud involves the misuse of someone’s Social Security number to commit crimes, such as claiming false benefits, opening fraudulent accounts, or applying for loans. If you believe your Social Security number has been compromised, report it immediately to the Social Security Administration (SSA) to prevent further misuse. The SSA can help monitor your account, and you can also request a credit freeze with the major credit bureaus. For broader identity theft recovery steps, visit the FTC’s identity theft portal. 

 

Business Email Compromise (BEC)

Business Email Compromise (BEC) is a sophisticated scam where cyber criminals spoof or hack into a business’s email system, often to redirect funds or steal sensitive information. This attack is widespread in financial transactions, vendor payments, and HR communications. If your company is affected by a BEC attack, report it immediately to your IT department and file a complaint with the FBI's Internet Crime Complaint Center (IC3), which tracks and investigates BEC incidents.

 

Online Stalking

Online stalking, or cyber stalking, occurs when someone uses technology to harass, monitor, or threaten another person. This can include using spyware, accessing your accounts without permission, or constant unwanted contact. If you’re a victim, the National Domestic Violence Hotline offers confidential support and can guide you through securing your devices, removing stalkerware, and ensuring your safety. In severe cases, you may need to involve law enforcement or seek legal action. 

 

Cyber Bullying

Cyber bullying involves using digital platforms like social media, texts, or emails to harass or bully someone. This can cause severe emotional harm and, in some cases, escalate to threats of violence or hate crimes. If you or someone you know is being cyber bullied, report the incidents to the platform where it occurred, as most have systems to handle harassment. If the bullying includes threats or hate crimes, contact local law enforcement. For additional help, the Cyberbullying Research Center offers resources on prevention and reporting.

 

Phishing

Phishing is a type of online scam where criminals try to trick you into revealing sensitive information—like passwords or financial data—by pretending to be a legitimate organization. Phishing scams often appear in the form of fake emails, websites, or messages. If you encounter a phishing attempt, report it to your email provider, the FTC, and anti-phishing groups like the Anti-Phishing Working Group. These reports help stop scammers from reaching more people.

Each of these crimes has its own set of risks and consequences, so taking immediate action and using available resources can help minimize the damage and prevent further incidents.

 

Collecting Evidence

When reporting cyber crimes, having clear, organized evidence can significantly aid law enforcement in building a case against the perpetrators. This evidence can include emails, log files, receipts, and any other documentation related to the incident. Keeping thorough and accurate records of your interactions can make the investigation process smoother and increase the chances of prosecuting the criminals.

To ensure you're prepared, collect and retain the following types of documentation:

Emails: Keep electronic copies of emails, including full header information, to show details such as the sender, recipient, and transmission time.

Log Files: If available, save log files from your computer or online accounts, noting the date, time, and time zone for each relevant event.

Financial Receipts: Preserve canceled checks, credit card receipts, wire transfer receipts, and money order receipts, especially if they are related to fraud or cyber crime.

Social Media Messages: If the incident involves communication through social media, retain copies of the messages, including timestamps and the platforms used.

Mail Receipts: Save certified or other mail receipts, including envelopes from items received via FedEx, UPS, or U.S. Mail, as they can help track fraudulent deliveries or packages.

Web Pages: Capture electronic copies of web pages or online ads that were involved in the scam or crime. If printing them, include the URL and date they were accessed.

Chatroom or Newsgroup Text: If the crime involved an online forum, save text from chatrooms or newsgroups as evidence.

Phone Records: Keep records of phone bills or any other documentation related to calls you received or made during the incident.

Collecting and preserving this information can be crucial to your case. If you're unsure whether something is important, keep it anyway—it may later become essential to the investigation.

 

Stay Prepared and Protected

Understanding how to recognize, report, and respond to cyber crimes is vital to protecting yourself, your business, and your community. Whether you're dealing with a hacked account, ransomware, identity theft, or another form of cyber crime, knowing the proper steps can help you minimize damage and assist law enforcement in combating these threats.

Key Steps

Collect Evidence: Preserve any documentation that might be relevant to the crime.

Report the Incident: Contact the appropriate agencies (FTC, FBI IC3, CISA) immediately.

Stay Informed: Regularly update yourself on the latest cyber threats and scams to stay ahead of potential attacks.

Take Action: Report suspicious activities immediately and take steps to safeguard your assets.

By remaining vigilant and proactive, you can help protect yourself and assist in bringing cyber criminals to justice.

 

Cybersecurity Awareness Month is held annually each October and is the leading global initiative promoting cybersecurity awareness and best practices. This initiative is co-led by the National Cyber Security Alliance and the Cybersecurity and Infrastructure Agency (CISA) of the U.S. Department of Homeland Security.

Once again, one Step Secure IT is honored to support Cybersecurity Awareness Month as a Champion, advocating for enhanced cybersecurity awareness and best practices. Join us and sign up as a Cybersecurity Awareness Month champion—get more information.