If you unfortunately become the victim of cybercrime, it is important to report it. This will allow a case to be built and may mean you are entitled to support.
We have created this page so that you don’t have to start this process alone and unsure of what to do.
DO NOT report crime to The Cyber Resilience Centre for London. We are here for guidance and support only.
If you are currently suffering a live Cyber attack (in progress), please call Action Fraud on 0300 123 2040 immediately. This service is available 24 hours a day, 7 days a week. Alternatively you can call your local Police at any time on 101.
If you are reporting a cyber-attack which has already taken place and isn’t ongoing, you can report it via Action Fraud’s online reporting tool, which will guide you through simple questions to identify what has happened. Action Fraud advisors can also provide the help, support and advice you need. You can also call Action Fraud’s telephone number if preferred 0300 123 2040.
Reporting incidents to the ICO:
If you are a business that has suffered a cyber-attack, you may need to report it to the Information Commissioner’s Office (ICO). Under the General Data Protection Regulation (GDPR) rules, it is mandatory that you report data breaches to the ICO within 72 hours.
Take this self-assessment to help determine whether your organisation needs to report to the ICO.
If you are experiencing a ransomware attack it is recommended not to pay the ransom demand as there is no guarantee you will regain control of your device and data. Visit No More Ransom for solutions to remove the ransomware without you needing to pay.
Ransomware is when your device, filesystem and data is locked from access and held to ransom with a demand for money to be paid for its release.
Create an Incident Response Plan:
An incident response plan will keep you organised and in control during a cyber attack and should contain a plan of action and contact information of those who can help resolve the issue, such as 24 hour tech support.
Once you are back to businesses, document current events so you can be prepared for a similar incident.
The National Cyber Security Centre (NCSC) provides certified organisations who can help you to create an incident response plan, as well as guidance on how to respond and recover from an incident.
Our colleagues at the South East Cyber Resilience Centre have also created a template to guide you through building your own Incident Response Plan.
Reporting fraud allows authorities to identify common trends and patterns used by fraudsters to block their efforts and provide guidance to the public so they remain vigilent.
Many services allow you to report fraud directly to them but it is still a good idea to also report it to the Police and Government Agencies.
Action Fraud is our national reporting body for all fraud. For examples of fraud visit their website.
If you come across a fake (phishing) email forward it on to
Websites can be copied to look genuine so that you might accidentally purchase products and services that don't exist, provide login and payment details to a criminal or infect your device with malware.
Reporting a fake website means it can be blocked and taken down so that others do not fall victim.
Most phone providers are part of a scheme that allows customers to report suspicious text messages (smishing) for free by forwarding it to 7726