Skip to main content

The Money Overview

The FBI says older Americans lost $7.7 billion to scams last year, much of it to the “phantom hacker” ploy

Americans aged 60 and older lost $7.7 billion to fraud in 2023, according to the FBI, with a fast-growing share of that total tied to a layered con the bureau calls the “phantom hacker” scheme. The scam works by impersonating tech support agents, bank officials, and government employees in sequence, pressuring seniors to liquidate savings and hand cash or gold to couriers who arrive at their doors. The losses are not abstract: victims have surrendered retirement accounts in a matter of hours.

How the phantom hacker scheme drains retirement savings

The FBI’s Internet Crime Complaint Center issued a dedicated alert describing the phantom hacker ploy as an evolution of older tech-support fraud. In the first phase, a caller claims to detect a virus or security breach on the victim’s computer. Once the target is alarmed, a second impersonator, posing as a representative of the victim’s bank, insists that accounts have been compromised and must be moved to a “safe” government-protected account. A third caller, pretending to be a federal official, then directs the victim to withdraw funds, convert them to cash or precious metals, and prepare them for pickup. Each handoff builds on the fear created by the last, and the entire sequence can unfold within a single day. The bureau warned that victims have lost their life savings through this multi-step script.

A separate bureau advisory detailed the physical cash-out stage: scammers dispatch couriers to collect envelopes of cash, gold bars, or other valuables directly from victims’ homes. That courier retrieval tactic makes recovery far harder because once the assets leave the victim’s hands, they move quickly through informal channels that are difficult for law enforcement to trace. The use of in-person pickups also signals an operational infrastructure that extends beyond call centers, requiring local accomplices in or near the communities being targeted.

Missing data on where phantom hacker networks operate

The FBI’s published materials group victims broadly by age, classifying anyone 60 or older as an elder-fraud target. What the bureau has not released is sub-national complaint data that would show whether phantom hacker reports cluster in specific metro areas, retirement-heavy ZIP codes, or states with large populations of older residents living alone. That gap matters because the courier component of the scheme depends on physical proximity. If complaints do concentrate geographically, it would point to localized networks of couriers and money handlers operating alongside remote call centers.

The bureau’s own elder-fraud reporting acknowledges that many cases go unreported. Victims often feel embarrassed or fear losing financial independence, so the $7.7 billion figure likely represents a floor rather than a ceiling. No primary FBI data break out how much of that total is attributable specifically to phantom hacker variants versus other tech-support or government-impersonation scams. Without that breakdown, the true scale of the layered impersonation tactic remains an open question. The FBI’s 2023 Elder Fraud Report, summarized in its elder fraud overview, flags underreporting as a persistent obstacle to accurate measurement.

Unclear role of banks and frontline safeguards

Financial institutions sit at a potential chokepoint in the scheme, since victims must withdraw large sums before handing them to couriers. Yet no primary-source data quantify how often banks flag or block these withdrawals. Whether tellers are trained to recognize the pattern, and whether internal alerts are consistently escalated, remains largely anecdotal. In many phantom hacker cases described by investigators, victims are instructed to lie to bank staff about why they are moving money, further complicating efforts to intervene.

Regulators have encouraged banks to develop protocols for unusual cash withdrawals by older customers, but the FBI’s public documents do not specify how frequently such measures stop phantom hacker losses. Without standardized reporting on “near misses” – transactions that were questioned or halted – policymakers and advocates have little visibility into which safeguards are working and where gaps persist.

Why victims comply with extreme demands

The scheme’s power stems from its choreography. By the time a supposed government official is on the line, the victim has already been primed by a fake technician and a fake banker, each reinforcing the story that urgent action is needed. The callers warn that law enforcement is monitoring the situation, that speaking to family or local bank staff could “jeopardize an investigation,” and that any delay could mean losing everything. For older adults who are less comfortable with digital banking or who live alone, the illusion of authority can override instinctive doubts.

Psychologists who study fraud note that such scams exploit trust in institutions as much as technical confusion. The impersonators adopt the language of cybersecurity and federal enforcement, turning jargon into a weapon. The speed of the sequence – often compressed into a single day – leaves little time for victims to consult relatives or independent advisers.

Calls for better transparency and targeted prevention

Advocates for older Americans argue that more granular data could sharpen prevention campaigns. If phantom hacker complaints are concentrated in certain regions, outreach could focus on local senior centers, faith communities, and primary-care offices. Law enforcement could prioritize disrupting courier networks in those same areas, rather than treating each case as a standalone incident.

For now, public guidance leans heavily on individual vigilance: hang up on unsolicited tech-support calls, independently verify any alleged bank or government contact using known phone numbers, and never hand cash or valuables to someone sent to the door by a stranger on the phone. But without clearer visibility into where and how often the phantom hacker script succeeds, efforts to protect older Americans risk remaining one step behind a scheme that is already stripping billions from retirement savings.