Cybercrime losses in 2025 reached nearly $21 billion, with healthcare and public health organizations reporting the highest number of cyber threats among all critical infrastructure sectors.
Reported Cybercrime Losses and Complaint Volume
The Federal Bureau of Investigation Internet Crime Complaint Report 2025 recorded almost $21 billion in reported losses, exceeding the $16.6 billion reported in 2024 by 26 percent. The report is based on complaints submitted to the Internet Crime Complaint Center, which surpassed 1 million complaints for the first time. In 2024, 859,000 complaints were recorded.
The reporting period represents the 25th year of the FBI’s annual cybercrime reporting. Complaint volume has increased from a few thousand complaints per month in earlier years to an average of nearly 3,000 complaints per day in 2025.
Cyber-enabled fraud accounted for 453,000 complaints and $17.7 billion in total losses.
Leading Cybercrime Categories By Financial Impact
Investment fraud generated the highest financial losses in 2025, totaling $8,648,617,756. Business email compromise followed with $3,046,598,558 in reported losses. Tech support scams accounted for $2,134,675,818 in losses.
Cryptocurrency-related complaints totaled 181,565 incidents. Artificial intelligence-related incidents accounted for 22,364 complaints and resulted in $893 million in losses.
Complaint Volume By Incident Type
Phishing generated the highest number of complaints at 191,561 incidents. Extortion followed with 89,129 complaints. Investment fraud accounted for 72,984 complaints. Personal data breaches accounted for 67,456 complaints. Non-payment or non-delivery incidents accounted for 56,478 complaints.
Ransomware Activity and Critical Infrastructure Impact
The Internet Crime Complaint Center received 3,611 ransomware complaints, resulting in more than $32 million in losses. The reported loss figures do not include costs associated with business disruption, equipment replacement, or third-party remediation.
Ransomware activity remained a reported cyber threat across critical infrastructure sectors. The ransomware variants with the highest complaint volumes included Akira, Qilin, INC Ransom or Lynx or Sinobi, BianLian, and Play.
Across all 16 critical infrastructure sectors, the healthcare and public health sector experienced the highest number of cyber threats with cases involving PHI breach. The sector reported 182 data breaches and 460 ransomware attacks. Other sectors identified with lower reported activity included critical manufacturing, financial services, information technologypotential , and government.
FBI Response Measures
The FBI implemented measures to address cybercrime activity, including preventing cyberattacks, notifying breach victims, and freezing stolen money. In January, it launched Operation Winter Shield, which outlined steps that businesses can take to improve defenses against cyber threats and block cyberattacks.
FBI also launched Operation Level Up to identify and alert victims of cryptocurrency investment fraud. The agency reported that 3,780 victims were notified, and 78 percent were unaware of the fraud activity.
The FBI initiated approximately 3,900 Financial Fraud Kill Chain interventions. These actions resulted in the freezing of more than $679 million in fraudulent transfers. The interventions achieved a 58 percent success rate overall and a 65 percent success rate for Financial Fraud Kill Chain actions in the healthcare sector.