Cybercrime Cost Consumers $27 Billion

Online scams are not only growing more common—they’re evolving fast. In 2024, cybercriminals stole an estimated $27 billion from Americans, primarily through identity theft, affecting over 18 million people.

The numbers in a recent study by Javelin Research are staggering and the methods behind these crimes are increasingly advanced, driven in large part by artificial intelligence according to MoneyWise.

This year’s findings uncover a troubling evolution in fraud tactics—scammers aren’t just chasing fast money anymore; they’re increasingly targeting personal information.

AI Is Supercharging Cybercrime

For context: At Finn Law Group, we’ve previously discussed how spotting online scams used to be much simpler—poor grammar and obvious spelling mistakes were red flags anyone could recognize.

But times have changed. The rise of artificial intelligence has transformed the landscape of online fraud. Scams that once hinged on clumsy language and broken English are now cloaked in professional, AI-crafted messages that appear alarmingly authentic—even to experienced observers.

• Deepfake Impersonations: Scammers are using AI to create convincing videos and audio clips of people’s friends, relatives, or even bosses. One common tactic? Pretending a loved one is in trouble and needs money urgently. The deepfakes are so realistic that many victims don’t realize they’re being scammed until it’s too late.
• Phishing Emails 2.0: Forget the old “Nigerian prince” scams. Today’s phishing emails are tailored, targeted, and grammatically flawless. AI tools scrape information from social media and other sources to personalize messages and increase the likelihood of a successful hit.
• Fake Websites That Fool Even the Savvy: AI now helps criminals clone legitimate websites down to the last pixel. These counterfeit pages are used to harvest passwords, credit card numbers, and other sensitive data. Even experienced users are getting duped.

Did you know? The average American receives two scam calls and three scam texts every week. The combination of realism and reach has made these types of scams more effective—and more profitable—than ever before.

Seniors in the Crosshairs

While no age group is immune to cybercrime, seniors remain prime targets. In 2023 alone, Americans over the age of 60 lost $3.4 billion to online scams, according to data cited by Moneywise. Scammers often pose as tech support agents or government officials to build trust and convince victims to share sensitive data or install harmful software.

Tech support scams are particularly rampant. These start with a pop-up or call claiming the user’s device has been infected. Once trust is established, the scammer might request remote access to “fix” the issue—gaining full control of the device and data.

Many seniors didn’t grow up with digital tech, and this knowledge gap makes them more susceptible to modern fraud techniques. Education and family support can make a big difference.

How to Protect Yourself Online

As our lives become more connected through smartphones, social media, and digital banking, the risk of online threats—from identity theft to phishing scams—continues to rise. Cybersecurity isn’t just an IT issue anymore; it’s a personal responsibility. Here’s how you can take proactive steps to safeguard your digital life:

1. Audit Your Digital Footprint

Think of your digital footprint as every trace you leave online—emails, old accounts, social media posts, and even online store profiles. The more information that’s out there, the more potential entry points hackers can exploit.

• Delete old accounts and unused apps that you no longer need. Many apps continue collecting your data long after you’ve stopped using them.
• Revoke unnecessary permissions for third-party services (especially those connected to your Google, Facebook, or Apple accounts).
• Regularly Google your name and email to see what public information is easily accessible.

Less digital clutter means fewer vulnerabilities—and that’s a win.

2. Use Strong Passwords and Multi-Factor Authentication (MFA)

Weak or repeated passwords are one of the most common ways hackers gain access to your accounts. Protect your logins like you’d protect your house keys.

• Create unique, complex passwords for each account using a reputable password manager like Bitwarden, 1Password, or LastPass.
• Never reuse passwords across sites—if one account is breached, the rest become low-hanging fruit.
• Always enable Multi-Factor Authentication (MFA) or Two-Factor Authentication (2FA). Whether it’s a text code, app notification, or biometric check, this adds an essential second layer of defense.

3. Adopt a Healthy Level of Suspicion

The best cybersecurity tool you have is your own skepticism. Social engineering is a favorite tactic among cybercriminals, and urgency is their weapon of choice.

• Don’t click on suspicious links in emails or texts—even if they look official.
• If someone contacts you unexpectedly—claiming to be from your bank, a tech support service, or even a loved one in trouble—pause and verify through a trusted method.
• Trust your instincts: If it feels “off,” it probably is. Legitimate companies will never pressure you to act immediately, especially when money or personal information is involved.

4. Stay on Top of Your Financial Activity

Online security is about catching threats early—especially when it comes to your money.

• Check your bank and credit card accounts weekly—don’t wait for the monthly statement.
• Set up real-time alerts for purchases and account activity, so you’re notified instantly if something unusual happens.
• Consider using a credit monitoring service to track changes to your credit report and receive alerts for potential fraud.

The sooner you detect suspicious activity, the faster you can respond and limit the damage.

5. Keep Your Devices Updated

It may seem minor, but those software updates on your phone, tablet, and computer often contain critical security patches. Ignoring them can leave you exposed.

• Enable automatic updates whenever possible.
• Use trusted antivirus and anti-malware tools, and keep them current.

Taking these steps doesn’t mean you’ll be invincible—but it does make you a much harder target for attackers.

What to Do If You’ve Been Scammed Online

If you’ve fallen victim to an online scam, know that you’re not alone—and there are steps you can take. Start by reporting the incident to the appropriate authorities, such as the FTC or your state’s attorney general. You should also notify your bank or credit card provider immediately to attempt to halt or reverse any unauthorized transactions. For identity-related fraud, consider placing a freeze or fraud alert on your credit reports.

However, if your financial losses are substantial or you’re facing complications recovering your money, it may be time to speak with a consumer protection attorney. Legal support can make a difference when navigating complex recovery efforts or holding deceptive actors accountable.

Final Thoughts

The digital world offers convenience, but it also opens the door to some serious risk. As cyber scams become more sophisticated, so too must our defenses. By staying informed and taking proactive steps, you can dramatically reduce your chances of becoming a victim.

Want to know how to scrub your digital footprint and keep your identity safe? Check out the full guide from Moneywise here.

Disclosure: This article is for information purposes only and is not intended as legal advice.

________________________

With more than 75 years of combined legal experience, attorneys J. Andrew Meyer and Michael D. Finn lead Finn Law Group, a national firm dedicated to consumer protection. Our team focuses on Timeshare Law and fraud-related consumer issues.

If you believe you could benefit from trusted legal guidance, we’re here to help. Contact us today for a free consultation—either in person or by phone—at 855-FINN-LAW. Stay informed on the latest consumer protection updates by following us on X.