The FBI has reported cybercriminals have stolen more than $262 million from US targets through account takeover schemes in 2025 so far, with individuals, businesses, and organizations across multiple sectors all targeted.
Over 5,100 complaints related to these incidents have been received by the FBI, typically involving criminals gaining unauthorized access to financial accounts, payroll systems, or health savings accounts.
Social engineering techniques such as phishing emails, fraudulent calls, and texts are commonly used to manipulate victims into revealing login details, and once access is obtained, attackers can reset passwords, take control of accounts, and wire funds to accounts they control, often converting the money into cryptocurrency to obscure the trail.