Cybercrime declining – but only domestically

3 min Reading Time

Just as overall crime rates are declining, so are cyberattacks, fraud, and cyberbullying on the internet. However, this only applies to incidents originating domestically. When including crimes from abroad, cybercrime is still on the rise.

TL;DR

• Domestic cases declining: The number of domestic cybercrimes fell by 3,016 to 131,391 cases in 2024.
• Foreign cases increasing: Cybercrimes committed from abroad rose to 201,877 – an increase of 6 percent.
• Low clearance rate: Only 2.2 percent of foreign cases are solved.
• Main threats: Call-center fraud, identity theft, ransomware, and phishing campaigns.
• Politics demands expansion: Better international cooperation and digital competencies for police and judiciary.

On April 2, 2025, Federal Interior Minister Nancy Faeser of the SPD, along with BKA President Holger Münch and Bremen’s Interior Senator Ulrich Mäurer, representing the interior ministers of the states, presented the new Police Crime Statistics (PKS) for 2024. According to this, the number of crimes, partly due to the legalization of cannabis, has decreased overall. However, there were more violent offenses. The cybercrime statistics also require closer examination.

When the call center rings three times

The number of cybercrimes committed domestically, including cyber fraud, cyberattacks, and social media harassment, decreased by 3,016 to 131,391 cases. However, the number of crimes committed from abroad increased to 201,877. “When we look at foreign crimes, we see an increase of 6 percent,” Holger Münch is quoted as saying by heise online. The clearance rate is extremely low at just 2.2 percent, which the BKA President attributes in part to the sometimes difficult cooperation with foreign authorities.

Cybercrime knows no borders: While domestic cases are declining, the number of international attacks continues to rise. The digital threat remains high. (Image source: Adobe Stock / gankevstock)

Foreign call-center-style fraud incidents with dubious promises of winnings or warnings that supposed relatives of the victims are in danger are on the rise. In the UK, AI is already being used to combat such fraudulent calls. Münch and the BKA see public awareness as the primary means of preventing such fraud incidents. The focus here is not on individual cases but rather on the structures of the perpetrators, according to the BKA President.

This also applies to other offenses such as identity theft, ransomware attacks, or complex phishing campaigns. The low clearance rate in all these areas highlights the limits of law enforcement in the digital space. Interior Minister Faeser emphasized the need for better international cooperation to more effectively pursue the perpetrators behind these digital attacks. Additionally, the expansion of digital competencies in police and judiciary should be promoted to address the growing complexity of cybercrime.

Why the statistics are misleading

The declining domestic statistics should not obscure the fact that the real threat level is increasing. The BKA assumes a significant dark figure: Many cyberattacks are not reported, especially in the small and medium-sized enterprise (SME) sector. Companies fear the reputational damage that comes with a public report. Therefore, the actual number of attacks is likely much higher than the statistics suggest.

Additionally, the professionalization of attackers is advancing. Ransomware-as-a-Service, automated phishing kits, and AI-supported social engineering attacks lower the barriers to entry for cybercriminals. What previously required technical know-how can now be purchased as a service in the darknet.

International dimension as the core problem

The low clearance rate for foreign crimes highlights a structural problem: Cybercrime knows no borders, but law enforcement does. While attackers operate from Eastern Europe, Southeast Asia, or Africa, German investigators encounter jurisdictional boundaries. EU-wide cooperation through Europol and the European Cybercrime Centre (EC3) works, but cooperation with non-EU states remains difficult.

BKA President Münch emphasized that the focus should be less on individual cases and more on the structures behind them. Disrupting infrastructures – such as botnets, marketplaces, or money laundering networks – is more effective than pursuing individual perpetrators. In 2024, some successes were achieved in this area, including the shutdown of several large darknet marketplaces.

What companies should do now

Given the increasing international threat level, companies should not base their cybersecurity solely on domestic statistics. Recommended measures include regular security awareness training, the implementation of zero-trust architectures, incident response plans with clear escalation paths, and collaboration with CERTs and industry associations. Particularly SMEs, which often lack the budget or personnel for dedicated security teams, should utilize external expertise.

Key Facts at a Glance

Domestic cases 2024: 131,391 (down 3,016 from the previous year)

Foreign cases 2024: 201,877 (up 6 percent)

Foreign clearance rate: 2.2 percent

Total damage from cybercrime in DE: Over 178 billion Euros annually (Bitkom)

Main vectors: Call-center fraud, ransomware, phishing, identity theft

Source: Police Crime Statistics 2024 (PKS), BKA

Fact: According to the BKA’s Federal Situation Report 2024, cybercrimes committed from abroad increased by 28 percent compared to the previous year.

Fact: Europol estimates that over 60 percent of all cybercrime offenses in the EU are committed by organized groups outside the European legal framework.

Frequently Asked Questions

Is cybercrime in Germany really declining?

Only at first glance. Domestic cases decreased by around 3,000, but crimes committed from abroad increased by 6 percent to over 200,000. The BKA also assumes a significant dark figure, as many attacks are not reported.

Why is the clearance rate for international cyberattacks so low?

At 2.2 percent, the rate is extremely low. The main reason is the difficult international cooperation: Cybercriminals operate across borders, and law enforcement encounters jurisdictional boundaries. In particular, cooperation with non-EU states remains problematic.

Which cyberattacks are currently increasing the most?

Call-center-style fraud schemes with fake winnings, ransomware attacks on companies, complex phishing campaigns with AI support, and identity theft are particularly on the rise. The professionalization through cybercrime-as-a-service lowers the barriers to entry for perpetrators.

What does politics demand against cybercrime?

Interior Minister Faeser and BKA President Münch advocate for better international cooperation, the expansion of digital competencies in police and judiciary, and the disruption of criminal infrastructures instead of mere individual case prosecution.

How can companies better protect themselves?

Recommended are regular security awareness training, zero-trust architectures, incident response plans, collaboration with CERTs and industry associations, and external security expertise – especially for SMEs without their own security teams.

Further Reading in the Network

How Zero Trust is implemented in practice is explained by Security Today: Zero Trust in Media Planning

Why cybersecurity is becoming a top priority is analyzed by Digital Chiefs: digital-chiefs.de

Cloud security strategies for SMEs in cloudmagazin: cloudmagazin.com

Related Articles

• Domain Hijacking: The often overlooked danger for companies
• Hybrid Warfare and Desinformation: The underestimated cyber threat for companies
• Case Study: Phishing campaign against automotive suppliers – 200 employees in the crosshairs

More from the MBF Media Network

cloudmagazin | MyBusinessFuture | Digital Chiefs

Header Image Source: Adobe Stock / Art_spiral

About the author: Tobias Massow

More articles by Tobias Massow