FBI's Internet Crime Report for 2021

Industry: Critical Infrastructure | Level: Strategic | Source: IC3

The FBI’s Internet Crime Complaint Center (IC3) has released its report for 2021, tracking a variety of internet crimes with top crime types involving extortion, identity theft, personal data breach, non-payment/non-deliver, and phishing/vishing/smishing/pharming crimes. Of particular interest are ransomware statistics, which since 2021, IC3 has received 3,729 complaints. The critical infrastructure sector has been closely monitored since June 2021, with 16 crucial sectors considered "vital to the United States that their incapacitation or destruction would have a debilitating effect on our security, national economy, public health or safety, or any combination thereof." Of complaints received, 649 involved organizations in the critical infrastructure sector and in addition, "of the 16 critical infrastructure sectors, IC3 reporting indicated 14 sectors had at least 1 member that fell victim to a ransomware attack in 2021." From the 14 impacted critical infrastructure sectors, the top victims were Healthcare and Public Health (148 complaints), Financial Services (89), Information Technology (74), Critical Manufacturing (65) and Government Facilities (60). Three ransomware variants were the culprits of many reported complaints. They are as followed Conti (87 victims), LockBit (58 victims) and REvil/Sodinokibi (51 victims).