FBI Report Reveals $17.7 Billion Cyber Fraud Losses as AI Scams Surge

The financial toll of online crime has reached a staggering new peak. According to the latest data from the FBI, victims in the United States suffered cyber fraud losses exceeding $17.7 billion in 2025. This alarming figure, detailed in the bureau’s annual Internet Crime Report, represents a significant increase from the $16 billion lost the previous year and underscores a rapidly escalating threat landscape.

Building on this trend, the FBI’s Internet Crime Complaint Center (IC3) fielded more than a million complaints last year. This translates to nearly 3,000 reports of suspected cybercrime every single day, a sharp rise from the 859,532 complaints recorded in 2024.

Cryptocurrency Scams Top the List of Financial Losses

So, which schemes are draining the most money from victims? Cryptocurrency investment fraud sits firmly at the top. This single category was responsible for a colossal $7.2 billion in losses. Typically, these scams lure individuals with promises of extraordinary, guaranteed returns. Instead of profits, victims find that the fraudsters—and their funds—vanish without a trace.

Business Email Compromise Remains a Major Threat

In addition to crypto scams, Business Email Compromise (BEC) continues to be a highly effective tool for criminals. This method, which involves compromising or spoofing corporate email accounts to authorize fraudulent wire transfers, accounted for over $3 billion in losses in 2025, securing its place as the second costliest cybercrime.

Tech Support and Identity Theft Round Out Major Threats

Meanwhile, fake tech or customer support scams defrauded Americans of more than $2 billion, making it the third-largest source of cyber fraud losses. Other persistent threats like identity theft, data breaches, and ransomware also contributed significantly to the year’s devastating financial totals.

The Rising Cost of AI-Enabled Cyber Fraud

Perhaps the most ominous development in the 2025 report is the formal recognition of artificial intelligence as a weapon for fraudsters. For the first time in its 25-year history, the Internet Crime Report included a dedicated section on AI-enabled crime. Victims lost nearly $893 million to these sophisticated schemes, with the IC3 receiving 22,364 related complaints.

“AI-enabled synthetic content is becoming increasingly difficult to detect and easier to make,” the report states. This allows criminals to craft highly convincing fraud schemes targeting individuals, businesses, and financial institutions. The technology is being used to generate phishing emails and create full-fledged audio and video deepfakes. These tools empower everything from romance scams to elaborate plots where fake personas are used to secure remote jobs, only to defraud the company from within. For more on evolving digital threats, see our guide on understanding modern phishing attacks.

Therefore, the line between reality and digital fabrication is blurring, creating unprecedented challenges for security.

A Call for Vigilance in a Digital Age

In response to these evolving dangers, the FBI has issued a stark warning. “It has never been more important to be diligent with your cybersecurity, social media footprint, and electronic interactions,” said Jose A. Perez, operations director for the FBI’s Criminal and Cyber Branch. He added that cyber threats will continue to evolve as the world adopts new technologies like AI.

Consequently, proactive defense is no longer optional. Earlier this year, the FBI launched Operation Winter Shield, an initiative outlining critical actions organizations must take to bolster their defenses. This move highlights the need for a shift from reactive to preventative security postures. Learn how to strengthen your organizational defenses with our resource on protecting against Business Email Compromise.

Ultimately, the data paints a clear picture: while technology creates opportunity, it also opens new avenues for exploitation. The record-breaking cyber fraud losses of 2025 are a powerful reminder that awareness, skepticism, and robust digital hygiene are essential personal and corporate responsibilities.

GrafanaGhost: How a Silent Exploit Evades AI Guardrails to Steal Enterprise Data

A new and critical security threat, known as the GrafanaGhost exploit, is enabling attackers to siphon off sensitive corporate information from monitoring platforms without raising alarms. This method cleverly sidesteps both client-side protections and the very AI guardrails designed to prevent such breaches, operating silently in the background.

Consequently, organizations using Grafana for analytics and monitoring are at risk. The platform often houses a treasure trove of operational intelligence, from financial performance metrics to real-time infrastructure health and customer data, making it a prime target for cybercriminals.

The Mechanics of a Stealthy Attack

Unlike conventional attacks that rely on phishing or stolen passwords, the GrafanaGhost exploit functions by chaining together subtle weaknesses in application logic and AI behavior. Attackers don’t need to break in; they manipulate the system into doing their bidding.

This process unfolds in a multi-stage sequence. First, attackers craft requests that appear legitimate to the system. Next, they employ a technique called indirect prompt injection, which feeds hidden instructions to the AI. These instructions can include specific keywords that cause the AI model to temporarily disregard its own safety protocols.

Bypassing Defenses with Simple Tricks

Building on this, researchers found that the exploit uses surprisingly simple methods to bypass defenses. A flaw in how URLs are validated allows external, malicious domains to be disguised as trusted internal resources. Furthermore, by using protocol-relative URLs, the attack slips past domain checks.

“GrafanaGhost perfectly illustrates how AI integration creates a massive security blind spot,” noted Ram Varadarajan, CEO at Acalvio. “The system is used exactly as designed, but with instructions the AI cannot verify as malicious.”

The Invisible Threat to Enterprise Security

Perhaps the most alarming feature of this GrafanaGhost exploit is its complete stealth. From an administrator’s or user’s viewpoint, nothing is amiss. Dashboards load normally, and there are no phishing emails, suspicious login attempts, or system alerts to investigate.

Therefore, sensitive data—like financial telemetry or server state information—can be attached to outbound requests and sent to attacker-controlled servers, all disguised as routine system activity, such as rendering an image. The data exfiltration happens automatically and invisibly.

“The underlying attack pattern, indirect prompt injection leading to data exfiltration via rendered content, is a well-documented and legitimate attack type,” explained Bradley Smith, SVP and Deputy CISO at BeyondTrust.

Shifting the Cybersecurity Paradigm

This incident signals a broader shift in the threat landscape. Attackers are increasingly moving beyond traditional software vulnerabilities to target the logic and AI components of modern systems. Indirect prompt injection is becoming a weapon of choice.

As a result, traditional security playbooks are insufficient. Relying solely on application-layer security toggles is no longer viable when the attack exploits the system’s intended functions.

How to Defend Against AI-Enabled Data Theft

So, what can security teams do? Experts argue for a fundamental shift in strategy. Defense must move beyond monitoring what an AI agent is instructed to do and instead focus on its runtime behavior. What actions is it actually taking?

“To defend against this, security teams must move beyond application-layer toggles to network-level URL blocking and treat prompt injection as a primary threat rather than an edge case,” Varadarajan advised. Proactive monitoring for anomalous data flows, even from trusted processes, is now essential.

In addition, organizations should review and harden their Grafana deployment configurations and implement strict outbound traffic controls. Understanding the broader context of AI security vulnerabilities is also crucial for building a resilient defense.

Ultimately, the GrafanaGhost exploit serves as a stark reminder. As AI becomes deeply embedded in business tools, our security models must evolve just as quickly to monitor not just access, but intent and outcome.

How North Korean Hackers Spent Weeks Hijacking a Critical Open Source Project

The recent compromise of the widely-used Axios library was not a smash-and-grab operation. Instead, it represents a calculated, patient North Korean cyberattack that unfolded over weeks, exploiting human trust rather than software vulnerabilities. This incident throws a harsh spotlight on the immense pressure faced by maintainers of essential open-source tools, who are now prime targets for well-resourced state actors.

The Anatomy of a Patient Attack

According to a detailed timeline from maintainer Jason Saayman, the operation began long before any malicious code was pushed. The hackers meticulously constructed a facade of legitimacy. They created a fake company, complete with a realistic-looking Slack workspace and profiles for fictitious employees. This groundwork was all about building rapport and credibility with Saayman, a classic social engineering playbook executed with state-level patience.

From Trust to Treachery

After establishing this fabricated professional relationship, the attackers invited Saayman to a web meeting. To join, he was prompted to download what appeared to be a necessary software update. This download, however, was malware designed to grant the hackers remote access to his system. This specific lure mirrors techniques previously documented by Google security researchers and attributed to North Korean operatives, who often use such access to steal cryptocurrency.

Consequently, once they had control of Saayman’s computer, the hackers had the keys to the kingdom. They used his compromised credentials to publish malicious versions of the Axios package to the npm registry.

The Scale of the Breach

The two poisoned packages were live for approximately three hours before being taken down. Nevertheless, in the fast-moving world of software development, that window was more than enough. Initial estimates suggest thousands of systems may have automatically installed the compromised code during that period. Any computer that did so potentially had its private keys, credentials, and passwords harvested, creating a cascade of secondary breach risks.

This means that the immediate North Korean cyberattack was just the opening gambit. The stolen data could fuel further intrusions for months, highlighting how a single point of failure in the open-source ecosystem can have devastating ripple effects. For more on securing development pipelines, see our guide on open source security best practices.

North Korea’s Cyber Warfare Machine

To understand this attack, one must view it as part of a larger, state-driven economic strategy. The Kim Jong Un regime, crippled by international sanctions and cut off from the global financial system, has turned to cybercrime as a primary funding source for its nuclear program. North Korea is believed to command thousands of hackers, many operating under duress, who are tasked with one mission: steal foreign currency, predominantly cryptocurrency.

In fact, Pyongyang’s hackers are blamed for pilfering at least $2 billion in digital assets in 2025 alone. Their campaigns are characterized by high levels of organization and a willingness to invest significant time—weeks or months—in social engineering to achieve a high-value payoff.

Lessons for the Open Source Community

This event is a sobering wake-up call. It demonstrates that attackers are no longer just looking for technical flaws in code; they are targeting the people behind the code. The maintainers of critical projects, often volunteers or under-resourced, are now on the front lines of global cyber conflict.

Therefore, the security model for open source must evolve. Beyond code audits and dependency checks, there must be greater support for maintainers themselves. This includes funding for security tools, education on advanced social engineering tactics, and institutional backing to reduce the burden on individuals. For teams managing multiple dependencies, understanding software supply chain risk is now non-negotiable.

Ultimately, the Axios hijack is a story about patience and precision. It shows how a determined adversary can weaponize trust to corrupt a tool used by millions. As open source software becomes ever more integral to the global digital infrastructure, protecting its human stewards is not just a technical challenge—it’s a geopolitical imperative.