Skip to content

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

2024 Industry Alerts RSS Symbol

  1. Product Security Bad Practices
  2. Iranian Cyber Actors' Brute Force and Credential Access Activity Compromises Critical Infrastructure Organizations
  3. Update on SVR Cyber Operations and Vulnerability Exploitation
  4. Principles of Operational Technology Cyber Security
  5. Iranian Cyber Actors Targeting Personal Accounts to Support Operations
  6. People's Republic of China-Linked Actors Compromise Routers and IoT Devices for Botnet Operations
  7. Secure by Design Alert: Eliminating Cross-Site Scripting Vulnerabilities
  8. Russian Military Cyber Actors Target U.S. and Global Critical Infrastructure
  9. #StopRansomware: RansomHub Ransomware
  10. Iran-based Cyber Actors Enabling Ransomware Attacks on US Organizations
  11. Best Practices For Event Logging and Threat Detection
  12. #StopRansomware: BlackSuit (Royal) Ransomware
  13. Secure by Demand Guide: How Software Customers Can Drive a Secure Technology Ecosystem
  14. North Korea Cyber Group Conducts Global Espionage Campaign to Advance Regime's Military and Nuclear Programs
  15. Secure by Design Alert: Eliminating OS Command Injection Vulnerabilities
  16. State-Sponsored Russian Media Leverages Meliorator Software for Foreign Malign Influence Activity
  17. APT40 Advisory: PRC MSS tradecraft in action
  18. 2024 U.S. Federal Elections: The Insider Threat
  19. Exploring Memory Safety in Critical Open Source Projects
  20. Social Engineering Tactics Targeting Healthcare & Public Health Entities and Providers
  21. Modern Approaches to Network Access Security
  22. Swatting Prevention and Response Guidance For Election Workers and Law Enforcement
  23. Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society
  24. #StopRansomware: Black Basta
  25. Cyber Criminals Phishing and Smishing US Retail Corporations for Gift Card Fraud
  26. Secure by Design Alert: Eliminating Directory Traversal Vulnerabilities in Software
  27. North Korean Actors Exploit Weak DMARC Security Policies to Mask Spearphishing Efforts
  28. Defending OT Operations Against Ongoing Pro-Russia Hacktivist Activity
  29. #StopRansomware: Akira Ransomware
  30. Deploying AI Systems Securely: Best Practices for Deploying Secure and Resilient AI Systems
  31. Secure by Design Alert: Eliminating SQL Injection Vulnerabilities in Software
  32. PRC State-Sponsored Cyber Activity: Actions For Critical Infrastructure Leaders
  33. Threat Actors Exploit Multiple Vulnerabilities in Ivanti Connect Secure and Policy Secure Gateways
  34. #StopRansomware: Phobos Ransomware
  35. Russian Cyber Actors Use Compromised Routers to Facilitate Cyber Operations
  36. SVR Cyber Actors Adapt Tactics for Initial Cloud Access
  37. Top Cyber Actions for Securing Water Systems
  38. Identification and Disruption of the Warzone Remote Access Trojan (RAT)
  39. Risk Management for Electronic Ballot Delivery, Marking, and Return
    • Alert note In 2020, the Cybersecurity and Infrastructure Security Agency (CISA), U.S. Election Assistance Commission (EAC), Federal Bureau of Investigation (FBI), and National Institute of Standards and Technology (NIST) provided "official use only" guidance to state election officials on the risks associated with electronic ballot delivery, marking, and return. For the 2024 election cycle, CISA, EAC, FBI, and NIST are reclassifying and redistributing this guidance (attached), which remains operative, so that it can be made publicly available and to ensure state officials and policymakers are fully informed of risks associated with electronic ballot return.
  40. Joint Guidance: Identifying and Mitigating Living Off the Land Techniques
  41. State-Sponsored Actors Compromise and Maintain Persistent Access to U.S. Critical Infrastructure
  42. Secure by Design Alert: Malicious Cyber Actors Exploiting Insecure SOHO Routers
  43. Incident Response Guide: Water and Wastewater Sector
  44. Cybersecurity Guidance: Chinese-Manufactured UAS
  45. Known Indicators of Compromise Associated with Androxgh0st Malware

Terms and Conditions

Prior to filing a complaint with the IC3, please read the following information regarding terms and conditions.

Should you have additional questions prior to filing your complaint, view FAQ for more information on inquiries such as:

  • What details will I be asked to include in my complaint?
  • What happens after I file a complaint?
  • How are complaints resolved?
  • Should I retain evidence related to my complaint?

Complaints filed via this website are analyzed and may be referred to federal, state, local or international law enforcement and partner agencies for possible investigation.

The complaint information you submit to this site is encrypted via secure socket layer (SSL) encryption. Please see the Privacy Policy for further information.

We thank you for your cooperation.

By clicking "I Accept" you acknowledge the following:

I understand any contact or investigation regarding any complaint I file on this website is initiated at the discretion of the agency receiving the complaint information. I will not be contacted by the IC3.

The information I'm providing on this form is correct to the best of my knowledge. I understand that providing false information could make me subject to fine, imprisonment, or both. (TITLE 18, U.S. CODE, SECTION 1001)