Cynthia Kaiser (14:23)

I'm glad to be here.

Dave Bittner (14:25)

So you and your colleagues there at the FBI have published the most recent version of your IC3 report. A bit of extra celebration here. This is the 25th year of the annual report, right?

Cynthia Kaiser (14:39)

It's the 25th year of IC3 overall, which started in 2000.

Dave Bittner (14:44)

Okay, well, time flies, right? For folks who are not familiar with IC3 and the mission. Can you give us a brief explanation?

Cynthia Kaiser (14:55)

It was created really to serve the law enforcement community and just public writ large. As we started to see cyber enabled crime pop up, where a lot of the kind of physical crime that we'd seen in the past had transferred into the digital realm. Now really though, it's evolved to become the primary destination for the public to report cyber enabled crimes and fraud, as well as a key source of information where we can put out to the public information on scams and cyber threats.

Dave Bittner (15:32)

So to be clear here, I mean, this is where the FBI encourages members of the public to report anything that may have happened to them online with scams and fraud and all those sorts of things.

Cynthia Kaiser (15:45)

Absolutely. Scams, fraud, cybercrime. Actually, since its founding, IC3 has received over 9 million complaints of malicious activity. And obviously it's increased exponentially since we first began. During its infancy, IC3 received roughly 2,000 complaints a month. For the past five years, IC3 has averaged more than 2,000 complaints a day.

Dave Bittner (16:13)

Wow. Okay, well, let's talk about the recent report here. What are some of the things that caught your eye?

Cynthia Kaiser (16:21)

I think the sheer number of crimes that we have reported to us and then to know that that's just a snapshot, that this is a function of who can report into us, and we know that these numbers are obviously going to be much larger. But a few key highlights. In 2024, IC3 received a total of 859,532 complaints with losses of more than 16.6 billion. That's a 33% increase in losses from the previous year.

Dave Bittner (17:04)

Wow. Can we dig into some specific areas here? I mean, what are you seeing in terms of things like ransomware?

Cynthia Kaiser (17:12)

We saw an increase in the number of incidents that were reported to the FBI of ransomware. Now, that doesn't necessarily mean victims paid. In fact, there's a lot of leading industry trackers that have noted a increased drop in ransomware payments overall, in part thanks to the FBI and our other law enforcement partners efforts to take down major ransomer groups like Lockbit and alfv. But still, like as we were looking at the data, who was attacking American networks really stuck out is 67 new ransomware variants were recognized by IC3 in 2024. The top sectors that were targeted include critical manufacturing and healthcare and public health. We saw some of the same types of ransomware groups be in the top five of the incidents that were reported to the FBI. And some different. The top five variants reported to IC3 were Akira, Lockbit, Ransom, Hub, Fog and Play. So really, you know, we're looking at all of this. We're getting These reports in. There's an increase in reports, we know from industry trackers, especially across the blockchain, there's a decrease in the amount of money that ransomware actors have actually received from these incidents. So it's hard to just make the numbers tell a story. But let me tell you what I actually think is probably going on here. The FBI has been able to provide decryptors to victims across the world that have prevented over 800 million in ransoms paid since the middle of 2022. Part of our ability to provide decryptors out to the public relies on the public reporting in their ransomware incident, because we don't always know who the victim is if we have information that would provide them with decryptors. So you have kind of this increase in effort by the ransom reactors to maximize their income, probably because some of their traditional methods aren't working. And so you see this increase in maybe the overall incidence. I just don't think that that's the whole story, though. You know, it's such a complex ecosystem, and we're really proud of some of those efforts that the FBI has been able to do to make a real difference.

Dave Bittner (19:57)

Well, let's touch on critical infrastructure here. That is something that the report digs into. Can you share with us some of the statistics that you gathered in that area?

Cynthia Kaiser (20:10)

Of course. IC3 received more than 4,800 complaints from organizations belonging to critical infrastructure sectors that were affected by cyber threats. The most reported cyber threats among critical infrastructure organizations were ransomware and data breaches out of the. If you're looking, going back into the ransomware. So out of the total, even ransomware complaints that were filed in 2024, almost half were related to critical infrastructure. Now, the top five sectors were critical manufacturing, healthcare, public health, government facilities, financial services, and it with really the vast majority up in the top two, critical manufacturing and healthcare and public health. And that's so important because targeting critical manufacturing can have cascading impact across numerous industries like automotive, aviation, electronics. And targeting healthcare facilities can actually become a threat to life matter with consequences that include hospitals being forced to be shut down or negative effects against patients.

Dave Bittner (21:29)

Overall, the data that you all are gathering Here at the IC3, the Internet Crime Complaint center, can you give us some insights as to how does that data get distributed to your colleagues at the FBI, the various field offices? How does that work?

Cynthia Kaiser (21:48)

So we're getting in these just thousands of complaints a day. And what that really translates to is it doesn't automatically go to a field office. We Have a incredibly dedicated group of individuals who go through every single complaint that we receive and triage it, provide additional information, try to connect it to other cases before they send that out to field offices to investigate further. And really, the best benefit we get from the incidents that come into IC3 are when we can tie them all together and say, this is a pattern. This is bigger than just even one victim. And we can really seek to build a case, work to hold these actors accountable for the adverse intentions they have towards US Citizens. It's such a big deal that we get all of these in. And I think especially, and I want to highlight another aspect of the report here, we're incorporating this year for the first time as one full report. Cryptocurrency fraud and elder fraud. And what you see is that criminals are going after the people who are over 60 in a huge amount, really trying to trick our family members out of millions, billions of dollars. And that's such a big deal. And it's something we take so seriously here at the FBI, being able to help the individual victims. But then also, and I can't emphasize this enough, the more reports we have that can pull them all together, the more we can investigate, and then the more we can warn others. And that really bears out from all of the public service announcements that you can see on ic3.gov.

Dave Bittner (23:59)

I think it's worth mentioning as well that, as you say, the. The huge number of reports that you get every day, it's impractical for the folks who are collecting those to respond personally to every single report. But it's worth noting that they do all get read and they get logged. So while it may not be gratifying if you don't hear back from the FBI right away, do know that the reports are going somewhere. They're not just getting lost in some big black hole. Right?

Cynthia Kaiser (24:34)

What a great point. And that's exactly right. These reports are all read, they're all reviewed, and they're all looked at for a way for us to be able to enrich them and build out a case from them so that we can provide American citizens the justice they deserve.

Dave Bittner (24:55)

Well, Deputy Assistant Director Cynthia Kaiser is with the FBI's Cyber Division. Dad Kaiser, thanks so much for taking the time for us.

Cynthia Kaiser (25:04)

Thank you so much for having me.

Dave Bittner (25:22)

Secure access is crucial for us public sector missions, ensuring that only authorized users can access certain systems, networks, or data. Are your defenses ready? Cisco's security service, Edge, delivers comprehensive protection for your network and users. Experience the power of zero trust and secure your workforce wherever they are. Elevate your security strategy by visiting cisco.comgo.sse that's cisco.com go sse e and finally RIP Privacy Sandbox we hardly knew ye Google's ambitious plan to banish third party cookies and reinvent online ads while championing privacy has quietly collapsed into a pixelated puff of irony. After six years of tinkering, Privacy Sandbox has been shelved, with Google citing AI hopes, mysterious privacy tech, and regulators breathing down its neck. Originally pitched as a privacy forward alternative to tracking cookies, the Sandbox ran into trouble from ad tech rivals and watchdogs who who weren't convinced Google wouldn't just rule the ad world even harder. As it turns out, fighting global regulators and industry skeptics proved tougher than debugging the sandbox APIs. Now Chrome will keep third party cookies, meaning your digital shadow lives on. While some sandbox remnants like IP protection might survive, the dream of a Google LED privacy renaissance has fizzled. When push came to shove, Chrome didn't clear your cookies, it just rearranged them on a shinier tray. And that's the Cyber Wire. For links to all of today's stories, check out our daily briefing@thecyberwire.com we'd love to know what you think of this podcast. Your feedback ensures we deliver the insights that keep you a step ahead in the rapidly changing world of cybersecurity. If you like our show, please share a rating and review in your favorite podcast app. Please also fill out the survey in the show notes or send an email to cyberwire2q N2K's senior producer is Alice Carruth. Our Cyberwire producer is Liz Stokes. We're mixed by Trey Hester with original music and sound design by Elliot Peltzman. Our executive producer is Jennifer Ibin. Peter Kilby is our publisher and I'm Dave Bittner. Thanks for listening. We'll see you back here tomorrow. And now, a message from Black Cloak. Did you know the easiest way for cybercriminals to bypass your company's defenses is by targeting your executives and their families at home? Blackcloak's award winning digital executive protection platform secures their personal devices, home networks, and connected lives. Because when executives are compromised at home, your company is at risk. In fact, over one third of new members discover they've already been breached. Protect your executives and their families 24, 7, 365 with black cloak. Learn more at BlackCloak IO.