FBI IC3 public warning on account takeover fraud
Public Sector Action
Summary
Hide ▲
Show ▼
The FBI issued an IC3 public service announcement warning that account takeover (ATO) fraud has caused over $262 million in reported losses since January 2025. The warning says criminals are impersonating financial institutions to steal credentials from bank, payroll, and health savings accounts across all industry sectors. It also urges users to use multi-factor authentication, unique passwords, and bookmarks for banking sites to reduce takeover risk.
Related Happenings
BEC defensive guidance for exposed-credential and account-misuse risk
Defensive Guidance
H score14
First: 30.06.2026 17:00
Last: 30.06.2026 17:00
Sources 1
About this happening:
**BEC defenders** are being pushed toward tighter **training** and **account-response controls** as operators combine **AI-generated business correspondence**, **call-center press...
BEC defensive guidance for exposed-credential and account-misuse risk
Defensive GuidanceAbout this happening: **BEC defenders** are being pushed toward tighter **training** and **account-response controls** as operators combine **AI-generated business correspondence**, **call-center press...
FBI courier-assisted crypto scam warning
Advisory/Mitigation
H score32
First: 16.06.2026 11:15
Last: 16.06.2026 11:15
Sources 1
About this happening:
The **FBI** has renewed warnings about **cryptocurrency investment scams** that use **couriers and cash pickups** to bypass bank checks and keep victims sending money. The advisor...
FBI courier-assisted crypto scam warning
Advisory/MitigationAbout this happening: The **FBI** has renewed warnings about **cryptocurrency investment scams** that use **couriers and cash pickups** to bypass bank checks and keep victims sending money. The advisor...
FBI PSA on courier cash pickups in crypto scams
Public Sector Action
H score26
First: 15.06.2026 18:30
Last: 15.06.2026 18:30
Sources 1
About this happening:
The **FBI** published a **public service announcement** warning that scammers in **cryptocurrency investment fraud** are now using **couriers** to collect cash after suspicious tr...
FBI PSA on courier cash pickups in crypto scams
Public Sector ActionAbout this happening: The **FBI** published a **public service announcement** warning that scammers in **cryptocurrency investment fraud** are now using **couriers** to collect cash after suspicious tr...
Operation Atlantic approval-phishing takedown
Law Enforcement
H score34
First: 13.04.2026 11:00
Last: 13.04.2026 11:00
Sources 1
About this happening:
A **UK-led** cross-border operation carried out a **takedown** of **approval phishing** crypto fraud networks, freezing **$12m** and identifying **more than 20,000 victims**. The...
Operation Atlantic approval-phishing takedown
Law EnforcementAbout this happening: A **UK-led** cross-border operation carried out a **takedown** of **approval phishing** crypto fraud networks, freezing **$12m** and identifying **more than 20,000 victims**. The...
Microsoft AiTM payroll pirate attack mitigation
Advisory/Mitigation
H score34
First: 10.04.2026 14:56
Last: 10.04.2026 14:56
Sources 1
About this happening:
**Microsoft** is urging defenders to harden **Microsoft 365** and related **HR workflows** against **AiTM**-driven payroll theft by requiring **phishing-resistant MFA**, blocking...
Microsoft AiTM payroll pirate attack mitigation
Advisory/MitigationAbout this happening: **Microsoft** is urging defenders to harden **Microsoft 365** and related **HR workflows** against **AiTM**-driven payroll theft by requiring **phishing-resistant MFA**, blocking...
Timeline
-
25.11.2025 19:23 2 articles · 7mo ago
FBI warns of account takeover fraud and credential theft
Initial DisclosureThe FBI issued an IC3 public warning about a surge in account takeover (ATO) fraud in which cybercriminals impersonate financial institutions and support staff through texts, calls, emails, phishing sites, and SEO poisoning to steal credentials for online bank, payroll, and health savings accounts. The agency said the schemes have driven over $262 million in stolen funds and more than 5,100 complaints since January 2025, and it advised monitoring financial accounts, using unique passwords, enabling multi-factor authentication, and opening banking websites through bookmarks rather than search results.
Show sources
- FBI: Cybercriminals stole $262M by impersonating bank support teams — www.bleepingcomputer.com — 25.11.2025 19:23
- FBI Warns of $262M Losses from Account Takeover Fraud in 2025 — www.infosecurity-magazine.com — 26.11.2025 16:15