Light Dark
March 8, 2018 By David Bisson 2 min read

The Federal Trade Commission (FTC) received more identity theft reports from millennials in 2017 than they did from senior citizens, a recent report revealed.

According to its “Consumer Sentinel Network Data Book 2017,” the FTC fielded reports of identity theft from 61,114 victims between the ages of 20 and 29 in 2017, while those in their 30s submitted 80,467 reports.

Together, millennials between 20 and 39 filed 141,581 cases in which someone stole their identity. That number dwarfs the combined total of 67,125 reports received from consumers in their 60s, 70s and 80s.

Fraud Types and Average Losses

Criminals victimized millennials with many different types of identity fraud, which affected 16.7 million U.S. consumers in 2017, according to Javelin Strategy & Research’s “2018 Identity Fraud Study.” The FTC report found that more than 30 percent of people in their 20s and close to 40 percent of those in their 30s suffered from instances of credit card fraud. Millennials who contacted the FTC also experienced bank fraud, employment or tax-related fraud, and phone or utilities fraud.

In addition, 40 percent of identity theft victims aged 20-29 said they lost money as a result of those scams, compared to just 18 percent of those in their 70s and older. However, senior citizens who did lose money reported greater sums than younger victims. The average median amount stolen from victims aged 80 or older was $1,092, while millennials lost less than half of that total.

Educating Consumers About Identity Theft

Overall, the FTC logged 2.68 million complaints from consumers in 2017. On one hand, that number represents a decrease from 2.98 million individuals who reported cases of identity theft in the previous year. On the other hand, victims lost more money to fraudsters in 2017 ($905 million) than the year prior ($842 million).

“This underscores the importance of the FTC’s work in educating consumers and cracking down on the scammers who try to take their money,” said Tom Pahl, acting director of the FTC’s Bureau of Consumer Protection, as quoted in a press release.

To protect themselves from identity thieves, consumers should be wary of suspicious emails and other social engineering schemes designed to compromise their sensitive data. If they suspect that someone is mishandling their personal information, consumers should file a complaint with the FTC.

 |  |  |  |  | 
David Bisson
Contributing Editor

More from

March 18, 2025

Bypassing Windows Defender Application Control with Loki C2

10 min read - Windows Defender Application Control (WDAC) is a security solution that restricts execution to trusted software. Since it is classified as a security boundary, Microsoft offers bug bounty payouts for qualifying bypasses, making it an active and competitive field of research.Typical outcomes of a WDAC bypass bug bounty submission:Bypass is fixed; possible bounty awardedBypass is not fixed but instead "mitigated" by being added to the WDAC recommended block list. Likely no bounty awarded but honorable mention is typically givenBypass is not…

March 4, 2025

FYSA — VMware Critical Vulnerabilities Patched

< 1 min read - SummaryBroadcom has released a security bulletin, VMSA-2025-0004, addressing and remediating three vulnerabilities that, if exploited, could lead to system compromise. Products affected include vCenter Server, vRealize Operations Manager, and vCloud Director.Threat TopographyThreat Type: Critical VulnerabilitiesIndustry: VirtualizationGeolocation: GlobalOverviewX-Force Incident Command is monitoring activity surrounding Broadcom’s Security Bulletin (VMSA-2025-0004) for three potentially critical vulnerabilities in VMware products. These vulnerabilities, identified as CVE-2025-22224, CVE-2025-22225, and CVE-2025-22226, have reportedly been exploited in attacks. X-Force has not been able to validate those claims. The vulnerabilities…

February 21, 2025

SoaPy: Stealthy enumeration of Active Directory environments through ADWS

10 min read - Introduction Over time, both targeted and large-scale enumeration of Active Directory (AD) environments have become increasingly detected due to modern defensive solutions. During our internship at X-Force Red this past summer, we noticed FalconForce’s SOAPHound was becoming popular for enumerating Active Directory environments. This tool brought a new perspective to Active Directory enumeration by performing collection via Active Directory Web Services (ADWS) instead of directly through Lightweight Directory Access Protocol (LDAP) as other AD enumeration tools had in the past.…

Topic updates

 Get email updates and stay ahead of the latest threats to the security landscape, thought leadership and research.
Subscribe today
© 2025 IBM Contact Privacy Terms of use Accessibility Cookie Preferences
Sponsored by si-icon-eightbarfeature