SponsoredBuild your website with Vincony

Disclaimer: This is not legal advice. Legislation and case law change. Always consult a qualified solicitor for your specific situation.

UK Law Reference
All Guides
Cyber & Technology Law
5 steps
Updated March 2026
UK-wide

Reporting Cybercrime (Action Fraud & NCSC)

How to report hacking, online fraud, data theft, and other cybercrimes in England & Wales.

Overview

Cybercrime covers a wide range of criminal activity involving computers, networks, and the internet. In England & Wales, cybercrime is primarily prosecuted under the Computer Misuse Act 1990 and the Fraud Act 2006. Reporting is handled by Action Fraud (the UK's national fraud and cybercrime reporting centre) and the National Cyber Security Centre (NCSC) for significant incidents. The police's National Crime Agency (NCA) investigates serious and organised cybercrime.

Who Can Use This Process

  • Any individual or business that has been a victim of cybercrime can report
  • Reports can be made by the victim or a representative
  • Businesses experiencing cyber attacks should also report to the NCSC

Step-by-Step Process

1

Identify the Type of Cybercrime

Common types include: hacking (unauthorised access to computers/accounts — Computer Misuse Act s.1), ransomware, phishing, online fraud (Fraud Act 2006), identity theft, distributed denial-of-service (DDoS) attacks, and malware.

Practical Tips
  • Preserve any evidence — screenshots, emails, log files, transaction records
2

Report to Action Fraud

Report online at actionfraud.police.uk or call 0300 123 2040. Action Fraud is the UK's central reporting point for fraud and cybercrime. You will receive a crime reference number.

Practical Tips
  • Reports are assessed by the National Fraud Intelligence Bureau (NFIB) and may be referred to a local police force for investigation
3

Report Significant Cyber Incidents to NCSC

If you are a business or organisation experiencing a significant cyber attack, report it to the National Cyber Security Centre at ncsc.gov.uk/report. The NCSC provides incident response guidance and may assist with major incidents.

Practical Tips
  • The NCSC Cyber Incident Signposting Site helps small businesses find appropriate support
4

Secure Your Systems

Change compromised passwords immediately. Enable two-factor authentication. Run malware scans. Disconnect affected devices from the network if actively compromised. Consider engaging a professional cyber incident response team for serious breaches.

5

Report Data Breaches to the ICO

If personal data has been compromised, the organisation responsible may need to report the breach to the Information Commissioner's Office (ICO) within 72 hours under the UK GDPR (Article 33). Individuals whose data has been compromised should be notified if there is a high risk to their rights and freedoms.

Costs

Reporting to Action FraudFree
Reporting to NCSCFree
ICO breach notificationFree

Important Warnings

Do not attempt to 'hack back' or access the attacker's systems — this would be a criminal offence under the Computer Misuse Act 1990.

If you suspect a cyber attack is in progress, do not delay — report immediately and take steps to contain the damage.

Businesses have regulatory obligations to report data breaches — failure to do so can result in ICO enforcement action and significant fines.

Useful Links

Frequently asked questions

How much does it cost?
Main outlays are: Reporting to Action Fraud — Free; Reporting to NCSC — Free; ICO breach notification — Free. Court fees often qualify for Help with Fees remission if you're on a low income. Solicitor fees are extra and vary widely — many matters can be done as a litigant in person.
What are the most common mistakes to avoid?
Watch out for: Do not attempt to 'hack back' or access the attacker's systems — this would be a criminal offence under the Computer Misuse Act 1990.; If you suspect a cyber attack is in progress, do not delay — report immediately and take steps to contain the damage.; Businesses have regulatory obligations to report data breaches — failure to do so can result in ICO enforcement action and significant fines.. If you're unsure on any of these, get advice from a regulated solicitor or a free service like Citizens Advice before acting.
Where can I find the official forms and guidance?
The official sources are: Action Fraud; National Cyber Security Centre; ICO — Data breach reporting. Always use the forms / guidance from the issuing authority's own site — third-party copies can be out of date.
Can I do this myself without a solicitor?
Yes — many people complete this kind of matter as a litigant in person. The site walks through each step in plain English. A solicitor is recommended if: large sums are at stake, the other side has legal representation, the matter involves criminal liability, children, immigration, or you're unsure on any procedural deadline. Free advice is available from Citizens Advice, Law Centres, and (for some matters) LawWorks pro bono clinics.

Related Content

Related Legislation