Active Incident? 24/7 Response →
SleuthX

Evidence & Court

How to Report Digital Evidence to Law Enforcement

Who to report to, in what order, and how to package what you have so it gets acted on — from your local police report to IC3, the FTC, and IdentityTheft.gov. Written for the person who was targeted, not the investigator.

When something criminal happens online — a scam, a hacked account, harassment, stolen money — reporting it well is its own skill. There is no single place to report; there is a hierarchy, and how you package what you hand over decides whether it gets acted on or set aside. This guide walks who to report to, in what order, and how to prepare the evidence so it survives.

Read this first: this is educational, not legal advice. If you are in immediate danger, call 911. Preserve your evidence before you do anything else — the steps below assume you still have the originals.

The reporting hierarchy — where to file, in order

  1. Your local police (get a report number). File a report with your local department and ask for the case or report number in writing. That number is what banks, insurers, and other agencies will ask for, and it opens the door to any local investigation.
  2. FBI IC3 (ic3.gov) for internet crime. The Internet Crime Complaint Center is the federal intake for online fraud and cybercrime. Describe what happened and do not attach files — keep your originals and provide them if an investigator asks. For a wire or bank transfer, filing fast lets the FBI Recovery Asset Team try to freeze the funds.
  3. FTC at ReportFraud.ftc.gov for fraud. The FTC feeds the Consumer Sentinel network that law enforcement across the country searches. It does not open your individual case, but it builds the pattern that gets a scammer investigated.
  4. IdentityTheft.gov if your identity was used. If accounts were opened or your identity misused, this FTC site generates a recovery plan and an identity-theft affidavit you can give to police and creditors.

Not every case needs all four. A romance scam with a wire loss goes to police, IC3, and the FTC; a hacked account with no financial loss may be police plus a platform report. Start local, then add the federal channels that match what happened.

What to hand over: packaging a report police accept

Officers act on what is clear and complete. Bring:

Common mistakes that get evidence ignored

When to bring in a forensic examiner

Reporting is often enough on its own. Consider a credentialed examiner when the matter is contested, when the device cannot be safely preserved by hand, when you need deleted data recovered, or when a screenshot clearly will not survive a challenge. An examiner collects and documents the evidence to a standard that stands up — see private digital forensics for individuals and, once you are ready to organize a handoff, how to organize evidence for a lawyer or the police. If a scam is involved, our honest scam-recovery guide walks the first steps.

Where to report — primary sources

  1. FBI Internet Crime Complaint Center (IC3), IC3 — file a complaint and preserve originals (FAQ: no attachments at filing). https://www.ic3.gov/Home/FAQ
  2. Federal Trade Commission, ReportFraud.ftc.gov — report fraud to the FTC (Consumer Sentinel). https://reportfraud.ftc.gov/
  3. Federal Trade Commission, IdentityTheft.gov — report and recover from identity theft. https://www.ftc.gov/news-events/topics/identity-theft/report-identity-theft
  4. U.S. Department of Justice, CCIPS, Reporting Computer, Internet-Related, or Intellectual Property Crime. https://www.justice.gov/criminal/criminal-ccips/reporting-computer-internet-related-or-intellectual-property-crime
  5. Scientific Working Group on Digital Evidence (SWGDE), SWGDE Best Practices for Digital Evidence Collection (18-F-002). https://www.swgde.org/documents/published-complete-listing/18-f-002-swgde-best-practices-for-digital-evidence-collection/

Meet Your Practitioner

Quinnlan Varcoe

Founder & CEO

GIAC-certified · 9 industry certifications

With operational experience across Fortune 50 security programs and the defense industrial base, Quinnlan founded SleuthX in 2022 to provide clients with the caliber of expertise typically reserved for the largest enterprises. Her work in threat intelligence and digital forensics has earned the trust of 26,000+ cybersecurity professionals who follow her analysis.

“26,000 professionals follow my work because I say what others won't — and I can back it up technically.”

Fortune 50 BackgroundDefense IndustryThreat IntelligenceDigital PrivacyIncident Response
Quinnlan Varcoe, Founder & CEO

Certified Expertise

GIAC

Reporting questions, answered plainly

Quinnlan Varcoe, Founder & CEO

Schedule Your Session

Schedule a confidential consultation

A direct conversation with Quinn, the founder and CEO who oversees every engagement. NDA-protected. No sales process. Most engagements begin within 48 hours.

Transparent pricing

Trusted by partners across the practice

DAS Health
Exhibit A Cyber
Ally Security
KIRO Group
Black Mirage
Kalles Group
Gridware
CQR
Archstone Security
Cyvergence
Sentinel Cyber
Cloud Underground
Seron Security
Hexen
Koru Risk Management
DAS Health
Exhibit A Cyber
Ally Security
KIRO Group
Black Mirage
Kalles Group
Gridware
CQR
Archstone Security
Cyvergence
Sentinel Cyber
Cloud Underground
Seron Security
Hexen
Koru Risk Management