How much money is lost to cybercrime annually?

The FBI IC3 reported $12.5 billion in cybercrime losses in 2023, up 22% from 2022. However, with estimated reporting rates of only 10-15%, true losses may exceed $80-100 billion annually in the US alone.

Why doesn't cybercrime appear in FBI crime statistics?

The FBI UCR/NIBRS system was designed for traditional street crime (murder, robbery, burglary, etc.). Cybercrime crosses jurisdictions, victims report to IC3 rather than local police, and there are no UCR categories for phishing, ransomware, or cryptocurrency fraud.

What is the most costly type of cybercrime?

Investment fraud was the costliest category in 2023 at $4.57 billion in losses. Cryptocurrency-related fraud totaled $3.94 billion. Business email compromise caused $2.9 billion in losses despite relatively few complaints.

Who is most vulnerable to cybercrime?

Americans over 60 lost $3.4 billion to cybercrime in 2023 — the highest dollar amount of any age group. They are particularly targeted by tech support scams and romance fraud.

ANALYSIS

Cybercrime Trends: The $12.5 Billion Crime Wave Missing from FBI Stats

The FBI tracks millions of traditional crimes through UCR and NIBRS. But the fastest-growing category of crime — cybercrime — barely appears in those statistics. Here's why the traditional crime picture is incomplete.

Share:𝕏 Facebook LinkedIn

Key Insights

→FBI IC3 received 880,418 complaints in 2023 with $12.5 billion in reported losses — a 22% increase from 2022
→Investment fraud alone caused $4.57B in losses — the costliest cybercrime category
→Business email compromise (BEC) scams cost $2.9B despite only 21,489 complaints
→UCR and NIBRS capture virtually none of this — traditional crime stats miss the digital economy of crime
→Americans over 60 lost $3.4B to cybercrime in 2023 — the most victimized age group by dollar amount
→Ransomware attacks increased 18% year-over-year, with critical infrastructure as a primary target

The Scale of Cybercrime in 2023

The FBI's Internet Crime Complaint Center (IC3) — a separate reporting system from the Uniform Crime Reports — received 880,418 complaints in 2023, with total reported losses of $12.5 billion. That's a 22% increase in losses from the $10.3 billion reported in 2022, and a nearly 100% increase from the $6.9 billion in 2021.

To put this in context: total reported losses from property crime in the traditional FBI statistics — burglary, larceny-theft, motor vehicle theft combined — are estimated at roughly $16–18 billion annually. Cybercrime losses are now approaching parity with all traditional property crime combined.

Top Cybercrime Categories by Losses (2023)

Crime Type	Complaints	Losses	Avg Loss
Investment Fraud	39,570	$4.57B	$115,494
Business Email Compromise	21,489	$2.9B	$134,952
Tech Support Scams	37,560	$924M	$24,602
Personal Data Breach	55,851	$744M	$13,322
Romance/Confidence Fraud	17,823	$652M	$36,589
Ransomware	2,825	$59.6M*	$21,097
Cryptocurrency Fraud	69,468	$3.94B	$56,721

*Ransomware losses are drastically underreported; many organizations pay without reporting. Source: FBI IC3 Annual Report 2023.

Why Traditional Crime Stats Miss Cybercrime

When you look at crime data from the FBI's Uniform Crime Reporting (UCR) program or the newer National Incident-Based Reporting System (NIBRS), cybercrime is essentially invisible. Here's why:

UCR was designed in 1930 for street crime. Its categories — murder, rape, robbery, assault, burglary, larceny, motor vehicle theft, arson — were defined when "crime" meant physical acts in physical places. There is no category for "phishing" or "ransomware."
NIBRS is better but still limited. While NIBRS added fraud and identity theft categories, most cybercrime crosses jurisdictions in ways that local police departments — the primary NIBRS reporters — cannot track. A victim in Ohio scammed by an offender in Nigeria using servers in Romania doesn't fit neatly into any local agency's report.
Victims don't report to police. Most cybercrime victims report to IC3, the FTC, their bank, or nobody at all — not their local police department. The estimated reporting rate for cybercrime is under 15%.
Businesses hide breaches. Companies that suffer data breaches or ransomware attacks often settle quietly rather than report to law enforcement. Mandatory breach reporting laws have helped, but vast underreporting persists.

The Real Scale: IC3 Only Scratches the Surface

If IC3's $12.5 billion seems large, consider that it likely represents a fraction of true losses. The FBI estimates that only about 10–15% of cybercrime victims file IC3 complaints. Adjusted for underreporting, true US cybercrime losses may exceed $80–100 billion annually.

Global estimates are even more staggering. Cybersecurity Ventures projects global cybercrime costs at $8 trillion in 2023, projected to reach $10.5 trillion by 2025. This would make cybercrime the third-largest "economy" in the world after the US and China.

Identity Theft: The Bridge Between Digital and Traditional Crime

Identity theft illustrates how cybercrime fuels traditional crime and vice versa:

The FTC received 1.4 million identity theft reports in 2023
Stolen identities are used to open fraudulent credit accounts, file false tax returns, and obtain benefits
Identity data stolen in breaches fuels organized retail theft — stolen credit card data is used to purchase goods for resale
Synthetic identity fraud — combining real and fake information — costs lenders an estimated $6 billion annually

The property crime statistics on this site capture burglary, larceny, and car theft. They do not capture the fact that a single data breach can expose millions of people to financial loss. The SolarWinds hack (2020), the Colonial Pipeline ransomware attack (2021), and the MOVEit breach (2023) each caused more aggregate financial damage than many cities' entire annual property crime totals.

Ransomware: The Corporate Hostage Crisis

Ransomware attacks — where criminals encrypt an organization's data and demand payment — have become one of the most disruptive forms of crime:

IC3 received 2,825 ransomware complaints in 2023, up 18% from 2022
The average ransom payment exceeded $1.5 million in 2023 (Sophos survey)
Total estimated ransomware costs including downtime, recovery, and ransom: $20+ billion globally
Critical infrastructure — hospitals, water systems, schools — are increasingly targeted
The Change Healthcare attack (2024) disrupted prescription processing for millions of Americans

Yet in the FBI's traditional crime reports, none of this appears. A hospital that pays $10 million in ransom and spends $50 million recovering doesn't show up in UCR or NIBRS data.

Cryptocurrency and the New Fraud Economy

Cryptocurrency-related fraud has exploded, with IC3 reporting $3.94 billion in losses across 69,468 complaints in 2023. The most common schemes include:

"Pig butchering" scams: Romance or investment scams where victims are gradually encouraged to invest larger amounts in fake cryptocurrency platforms
Fake exchanges: Sophisticated websites mimicking legitimate crypto exchanges
DeFi exploits: Hackers exploiting vulnerabilities in decentralized finance protocols
Money laundering: Crypto used to move proceeds from drug trafficking and other crimes

Many of these victims are educated professionals. The average loss in investment fraud was $115,494 — these are not small-dollar crimes.

Age and Victimization: Elders Hit Hardest

The IC3 data reveals a clear age pattern in cybercrime victimization:

Age Group	Complaints	Total Losses
Under 20	18,068	$40.7M
20–29	68,462	$539M
30–39	107,419	$1.26B
40–49	112,962	$1.69B
50–59	104,890	$2.18B
60+	101,068	$3.4B

Source: FBI IC3 Annual Report 2023.

Americans over 60 reported $3.4 billion in losses — more than any other age group. Elder fraud is particularly devastating because victims often lose retirement savings with no way to recover. Tech support scams and romance fraud disproportionately target older adults.

The Measurement Gap: What We Need

The disconnect between cybercrime reality and traditional crime statistics creates a dangerous blind spot:

Resource allocation: Police departments and legislators allocate resources based on UCR/NIBRS data — data that excludes the fastest-growing crime category
Public perception: When people say "crime is down," they're right about street crime. But they're ignoring the $12.5B+ in cybercrime losses
The great crime decline narrative: The 52% drop in violent crime since 1991 is real and significant. But some crime hasn't declined — it has migrated online

A more complete picture of American crime would integrate IC3 data, FTC fraud reports, SEC enforcement actions, and CISA incident reports with traditional UCR/NIBRS data. Until then, we're measuring 20th-century crime with 20th-century tools while 21st-century crime surges past us.

The Bottom Line

Cybercrime is not a niche concern — it's a $12.5 billion (reported) and potentially $100 billion (actual) annual problem that barely appears in the FBI's primary crime statistics. The UCR program that generates the data on this site was designed for a world of street robberies and home burglaries. That world still exists, but it's increasingly overshadowed by a digital crime economy that traditional measurement systems cannot capture.

When you browse the crime data on OpenCrime, remember: you're seeing the crimes that police departments report. The online crimes — the $4.57B in investment fraud, the $2.9B in business email compromise, the billions in ransomware costs — are largely invisible here. The full picture of American crime is bigger than any single dataset can show.

Related Analysis

Sources: FBI Internet Crime Complaint Center (IC3) Annual Report 2023; Federal Trade Commission Consumer Sentinel Network; Cybersecurity & Infrastructure Security Agency (CISA). Traditional crime data from FBI UCR/NIBRS.