$7.7 Billion and Climbing: Why Most Elder Fraud Cases Never Get Investigated

Written By Lucas Flores

In 2025, Americans aged 60 and older reported losing $7.748 billion to internet-enabled fraud, a 59 percent jump from the previous year, across more than 201,000 complaints filed with the FBI's Internet Crime Complaint Center. The average reported loss for a senior victim was roughly $38,500, nearly double the average across all age groups. More than 12,000 older victims each lost over $100,000. Tech support scams alone accounted for over a billion dollars of those losses.

Texas ranks third in the country for elder fraud complaints, with over 14,000 senior victims reporting in 2025. And those are only the ones who reported. Shame, confusion, and family pressure keep most victims silent, which means the real numbers are higher and the official tallies undercount what is actually happening in Texas living rooms every day.

These cases are growing faster than the systems built to address them. The result, in too many jurisdictions, is that an elderly victim walks into a police station, files a report, and never hears anything again.

How the Scam Actually Unfolds

I recently worked a tech support scam investigation that followed a pattern I see repeatedly. The details below are anonymized, but the structure is representative of how these schemes work in practice.

The victim, a retiree in her seventies, was browsing Facebook when she clicked on what appeared to be a routine ad. Her browser immediately filled with a flashing alert claiming her computer was infected with a virus and that her personal data was being transmitted to foreign servers. The screen instructed her to call "Microsoft Support" immediately at a phone number prominently displayed.

She called. A calm, professional voice on the other end walked her through downloading a remote access tool, ostensibly so the technician could clean the infection. Within minutes, a stranger had complete control of her computer and could see everything on it.

The "technician" then escalated. He told her the infection had been traced to her bank accounts and that her savings were in immediate danger. He would transfer her to her bank's fraud department. She was placed on a brief hold, then connected to someone claiming to be a fraud investigator from her bank. He was also part of the scheme.

Over the following days, she was instructed to withdraw large amounts of cash from her accounts, presented as a "protective measure" to safeguard her money while the bank "investigated." She was told to mail packages of cash to addresses in other states, or in some instances to hand cash directly to couriers who came to her home. Those couriers are money mules, often recruited online and sometimes unaware of the full scheme themselves, but legally exposed nonetheless.

By the time a family member noticed, the losses were substantial.

The Anatomy of a Layered Fraud

What makes these cases difficult is that they are not single events. They are coordinated operations with multiple layers, often run from overseas call centers but executed on the ground in the United States by a network of co-conspirators. A complete investigation has to follow several threads in parallel.

The digital layer includes the malicious ad, the pop-up infrastructure, the remote access software used to take over the device, the phone numbers and VoIP routing used to call the victim, and the digital trail left on the victim's own computer. Each of these contains evidence, but only if it is preserved and analyzed before it disappears.

The financial layer includes the bank withdrawals, the wire transfers, the cash shipments, and increasingly the cryptocurrency conversions that move stolen funds offshore. Tracing this layer takes specialized tools and access to records that have to be requested quickly.

The human layer is the one most often overlooked. The overseas operators are usually beyond practical reach, but the money mules, the couriers, and the domestic facilitators are not. They live in the United States. They can be identified, charged, and in many cases compelled to provide information about the larger network. Sometimes their assets can be seized to provide partial restitution to victims.

All three layers have to be worked at once, and the window for doing it well is short.

Why Local Law Enforcement Often Cannot Take These Cases

This is the part of the story that frustrates families the most, and it is worth being honest about. In a major metropolitan area, a victim might be lucky enough to land with a financial crimes unit that has digital forensics capacity. Outside those few jurisdictions, the picture changes quickly.

Most county sheriff's offices and small municipal departments simply do not have the resources, equipment, or trained personnel to investigate a multi-layered international fraud scheme. The officer who takes the initial report is usually a patrol deputy whose caseload is dominated by local priorities. The case may be referred to a detective, but that detective often has no specialized training in digital evidence collection from compromised devices, no relationship with cryptocurrency tracing tools, and no time to coordinate with banks, telecom carriers, and out-of-state agencies to follow the money. Federal agencies will take the biggest cases, but they have their own thresholds and queues. A case that would be a priority in a metropolitan field office may sit untouched for years in a smaller jurisdiction.

The result is that the report gets filed, and then nothing happens. Not because anyone is indifferent, but because the case is genuinely beyond what most agencies are staffed to handle.

In the case I described above, the victim's family told me they had filed a report locally and waited months without an update. By the time someone with the right expertise looked at the evidence, key digital traces had already begun to decay.

Why Early Investigation Changes Everything

Time is the single most important variable in elder fraud recovery. Digital evidence on the victim's computer, including the remote access logs, the browser artifacts that show the original malicious ad, the system traces left by the attacker's tools, and the records of the actual sessions, all degrade quickly. Some of it disappears the next time the computer is used.

Bank records can be subpoenaed, but tracing funds that have moved through multiple accounts becomes exponentially harder with each passing week. Cryptocurrency, once converted and moved through mixers, can be effectively unrecoverable.

The money mules and domestic facilitators are easiest to identify in the days immediately after the fraud, when shipping records, surveillance footage, and bank deposits are fresh. Wait too long and people relocate, accounts close, and records age out.

When investigation happens early, the outcomes improve in concrete ways. Suspects in the United States can be identified and prosecuted. Assets can be located and seized. Civil recovery actions become viable. Restitution orders, when they happen, depend on having documented who took the money and where it went. None of that is possible without the underlying forensic work.

What a Private Forensic Investigation Can Do

For attorneys representing elderly victims or their families, or for families who have been told the case is "under review" with no movement, a private digital forensics investigation can fill the gap that local law enforcement cannot. The forensic examiner preserves the evidence on the victim's devices before it is lost, documents the fraud in a form that supports civil litigation or insurance claims, and produces material that federal agencies can use to prioritize the case for federal prosecution. In many situations, the work done by a private examiner is what moves a case from a stalled report to an active investigation.

This is also how civil recovery becomes realistic. A documented chain of evidence supports lawsuits against domestic facilitators, claims against money transmitters or financial institutions that failed in their duties, and asset seizure proceedings that can return at least some of what was stolen.

The Practical Takeaway

If you are an attorney with a client who has been victimized, or a family member who suspects an elderly relative has been targeted, the most important step is the earliest one. Do not wait for the local investigation to develop. Preserve the device immediately by not using it, not deleting anything, and not letting anyone "clean" it. Document every transaction. Report to IC3 at ic3.gov regardless of the amount. And get a qualified examiner involved before the digital trail goes cold.

Veritas handles elder fraud and financial exploitation cases for civil litigators, victims' families, and law enforcement agencies that need supplemental capacity. We work statewide, in person and remotely.

This article is for general informational purposes and does not constitute legal advice. Anyone who suspects they or a loved one has been a victim of fraud should also contact local law enforcement and file a report at ic3.gov.

Lucas Flores
Previous

Not All Phone Extractions Are Created Equal: What Attorneys Need to Know
Next

When the Document Lies: How Forensic Analysis Catches Forged PDFs