How to Report Cyber Crime

Understanding how to report cyber crime effectively starts with identifying the right agency for your specific situation, since different crimes go to different channels. Many victims hesitate to report because they feel embarrassed, assume nothing will be done, or don't know where to start. All three concerns are understandable and all three are worth pushing past; the reporting process is more straightforward than most people expect, and every report contributes to a larger intelligence picture. This guide walks through the right reporting channels by country and crime type, how to preserve evidence, and how to follow up to maximize the chances that your case contributes to action.

How to Report Cyber Crime: Identify What Type You Experienced

Different cyber crimes go to different agencies. Identifying your case helps target the right channel.

• Online fraud (investment scams, romance scams, business email compromise): FBI IC3 (US), Action Fraud (UK), national equivalents elsewhere
• Identity theft: FTC, IdentityTheft (US), specific identity theft units elsewhere
• Sextortion and online extortion: FBI IC3, Action Fraud, NCMEC (under 18), local police
• Hacking and unauthorized access: CISA (US), NCSC (UK), national cybersecurity centers
• Ransomware: Federal cybercrime units (don't pay ransoms)
• Online harassment and stalking: Local police + platform reports
• Child exploitation: NCMEC CyberTipline, IWF (UK), national child protection agencies
• Online drug or weapons sales: DEA (US), national customs agencies

Preserve Evidence Before Reporting

Strong reports require strong evidence, and the quality of your evidence directly determines whether investigators can act on your case. Screenshot all relevant communications with timestamps and identifying information visible, and save URLs, email addresses, phone numbers, IBANs, and crypto wallet addresses. Document the full timeline of events with specific dates and preserve any malware, suspicious emails, or files in a secure format. Note any financial losses with bank statements and transaction records, and compute file hashes (SHA-256) for any digital evidence files. Store everything in multiple locations: cloud storage, an encrypted local drive, and a printed packet. Once evidence is preserved, you can safely block perpetrators or delete malicious files without compromising your case. If your case involves intimate images or blackmail, follow the steps for reporting cyber blackmail so threats, messages, and identifying details are documented correctly.

File Federal Reports

For US victims, federal reporting is the foundation.

• FBI IC3: The Internet Crime Complaint Center for all cyber-enabled crimes. Available 24/7, free, no minimum loss requirement. See the IC3 complaint center filing guide for step-by-step instructions.
• FTC ReportFraud.ftc.gov: For consumer fraud, identity theft, and scams
• IdentityTheft: Specifically for identity theft, with personalized recovery plans
• CISA: For cybersecurity incidents, ransomware, vulnerability reports
• CyberTipline (NCMEC): For child exploitation

File on every applicable platform. Each has different downstream investigators and different jurisdictional authority. A single incident may be relevant to multiple agencies simultaneously; there is no downside to filing with all applicable channels.

File With Local Law Enforcement

Federal reports do not replace local police reports. Both are needed.

• Local police can act on physical threats and in-person elements
• Local reports support insurance claims and civil litigation
• Many cyber crimes involve local elements (delivered packages, in-person meetings)
• Police departments increasingly have cyber-savvy detectives or units
• Bring printed evidence to in-person reports

Both reports run in parallel; federal and local agencies coordinate through liaison programs. Local law enforcement is also increasingly equipped to handle digital evidence; many departments now have dedicated cyber units that can work alongside federal investigators on complex cases.

International and UK Reporting

For UK victims:

• Action Fraud (England, Wales, NI)
• Police Scotland 101 (Scotland)
• NCSC for cybersecurity incidents
• IWF for illegal content

For other countries:

• EU: Europol's European Cybercrime Centre (EC3) coordinates national reporting
• Canada: Canadian Anti-Fraud Centre + RCMP
• Australia: ReportCyber + Scamwatch

Most countries have dedicated cybercrime reporting portals. Regardless of which country you're in, the core process is the same: preserve evidence first, then report simultaneously to as many applicable channels as possible. Cross-border cases are common in cybercrime; reporting to your national authority is the entry point into international coordination frameworks like Interpol and Europol. For a complete list of cybercrime helpline numbers by country, the cyber crime helpline numbers guide provides direct contact details.

Provide Comprehensive Information

The quality of your report directly affects whether it can be actioned by investigators. Be specific about dates, times, and amounts, and include all identifying information about the perpetrator. Provide context about how the crime occurred and avoid emotional language; stick to verifiable facts that an investigator can follow up on. Attach evidence directly through the report system where possible, and include any reference numbers from other reports such as platform reports and bank cases. Vague reports are harder to action than detailed ones; investigators are looking for leads they can pursue, not general descriptions of harm. The more specific and organized your submission, the more likely it is to contribute to an active investigation.

Coordinate With Financial Institutions

If money was lost or accounts were compromised, financial reports need to run alongside law enforcement reports rather than after them. Call your bank's fraud line immediately without waiting, report card fraud and request reissue, and place a fraud alert or credit freeze with credit bureaus including Equifax, Experian, and TransUnion. Contact your insurance company if applicable and document all bank communications with reference numbers. The first 48 hours are critical for fund recovery and damage limitation; banks can sometimes reverse transactions or freeze destination accounts if contacted quickly enough. Keep a log of every call with the name of the representative you spoke to and the outcome.

Follow Up on Reports

Most cybercrime reports don't receive individual updates, and that doesn't mean they're being ignored. IC3 aggregates reports for pattern detection and intelligence, meaning your report may contribute to a prosecution even if you never hear back directly. Save your report reference numbers in a single file and be prepared to provide additional information if contacted by investigators. Many prosecutions are built from hundreds of similar reports pointing to the same network or individual. Don't be discouraged by lack of immediate response; the impact of reporting is often felt months or years later when patterns become visible across many cases. Reporting cyber crime promptly and accurately maximizes the usefulness of your submission to investigators.

Get Specialist Support for Complex Cases

For severe cases or where reporting alone is insufficient, specialist support significantly improves outcomes. Engage cyber blackmail help for sextortion cases where intimate content is involved. Work with an attorney for civil action and damages recovery, and consider identity theft restoration services if personal data was compromised. Connect with victim advocacy organizations for emotional support and guidance through the process. Specialist teams maintain direct relationships with platform safety teams and law enforcement liaisons that individual reporters cannot access.

Take Action and Contribute to Justice

Reporting cyber crime is one of the most impactful steps a victim can take, both for individual recourse and broader public protection. The combination of federal, local, financial, and platform reports builds the picture that leads to prosecutions. Start with evidence preservation, then file simultaneously across all applicable channels rather than sequentially. Specialist support exists for complex cases where reporting alone isn't enough. Whether you've lost money, intimate content, or peace of mind, the reporting process creates a legal record that supports every subsequent step including civil action, platform removal, and financial recovery. For extortion cases specifically, victims may need professional help with cyber extortion reporting, especially when threats, payment demands, or intimate content are involved. Resources are available 24/7 to help you navigate the reporting process and recover.