Business owner reporting cybercrime to FBI IC3 website on laptop in Southern California office

The FBI Has a Website for Cybercrime. Most Business Owners Have Never Heard of It.

Cybersecurity
April 15, 20262 min read

If your business ever gets hit by a cyberattack, a scam, or online fraud — there's a place you're supposed to report it. Most people have no idea it exists.

It's called the IC3. The Internet Crime Complaint Center. It's run by the FBI, and it's the federal government's central hub for reporting cyber-enabled crime.

Here's why that matters more than you'd think.

The numbers are staggering. Reported losses from internet crime went from $4.2 billion in 2020 to $16.6 billion in 2024 — with over $50 billion lost across that five-year period. And those are only the crimes that got reported. Most don't.

What can you report to IC3?

Pretty much anything cyber-related. Business email compromise, ransomware, phishing, data breaches, investment fraud, account takeovers, even tech support scams where someone pretends to be from Microsoft or your bank. IC3 is the main intake form for a variety of complaints — everything from cyber-enabled frauds and scams to cybercrime.

Why bother reporting if nothing happens?

Fair question. IC3 cannot respond directly to every submission — but your report helps the FBI investigate reported crimes, track trends and threats, and in some cases even freeze stolen funds. Your report also gets shared across FBI field offices and law enforcement partners nationwide. One complaint from a Riverside business might be the piece that connects a pattern they've been tracking for months.

What Southern California businesses should know right now.

IC3 just flagged several active threats worth paying attention to — including threat actors spoofing FIFA websites ahead of the 2026 World Cup, a phishing-as-a-service kit hijacking Microsoft 365 access tokens, and a cyber criminal group attacking learning management systems. These aren't abstract threats. They're active. And small businesses are in the blast radius.

The IC3 website also has a library of public service announcements, industry alerts, and cybercrime guides — all free, all from the FBI. It's worth bookmarking: ic3.gov.

But here's the honest truth — reporting after the fact is the last resort. The goal is to never need to file that report in the first place.

That's what We Solve That does for businesses across the Inland Empire, Los Angeles, Orange County, and San Diego. Proactive monitoring, real cybersecurity, and a team that catches threats before they become incidents. Schedule your free strategy call at wesolvethat.com.

Back to Blog