Krystian Nawrocki / Getty Images stock

Romance scams make up more than 10 percent of all financial losses to online fraud — and women 50 and older account for 61 percent of those losses.

Fake Romeos are getting rich off women ages 50 and older, who are by far the biggest victims of online romance scams, federal authorities reported Tuesday in detailing an 8 percent rise in U.S. Internet crime last year.

Romance scams most often are operations in which the victim is sucked in by a fake profile on an online dating site and hands over cash or other gifts.

The most notorious recent incident involved Notre Dame linebacker Manti Te'o, whose "girlfriend" and her heart-tugging death to leukemia turned out to be an online hoax. But it's much more common for older women to be victimized, according to statistics released Tuesday by the Internet Crime Complaint Center, or IC3, a joint project of the FBI, the National White Collar Crime Center and the Bureau of Justice Assistance.

More than 10 percent of all reported online financial losses last year — about $56 million out of $525 million overall — involved romance scams, the center reported in its 2012 crime roundup.

The IC3 report tabulated that 29 percent of those specifically targeted in such scams last year were women 50 and older:

Internet Crime Complaint Center

But they got taken for more than $34 million — 61 percent of all losses to such cons:

Internet Crime Complaint Center

By comparison, everybody else — younger women and all male victims — reported only $22 million in losses, according to the report.

"Middle-aged or older women are what I see being susceptible to another man who manipulates them for either money or sex," Justin D'Arienzo, a psychologist and dating coach in Jacksonville, Fla., told NBC station WTLV after a 60-year-old Jacksonville woman was victimized earlier this year.

Overall, losses to Internet crime rose by 8.3 percent in 2012, breaking the half-billion-dollar mark for the first time — further establishing that "criminals are increasingly migrating their fraudulent activities from the physical world to the Internet," said Richard McFeely, executive assistant director of the FBI's Criminal, Cyber, Response and Services Branch.

In response, IC3 said in a statement that it has expanded its education programs to alert the Americans to online scams.

"As technology continues to advance, so will our efforts to stay one step ahead of cyber criminals," said Don Brackman, director of the National White Collar Crime Center.

The breadth of romance trolling is further illustrated by a startling statistic: Only one other type of online scam — auto fraud — made more money last year, accounting for $65 million in reported losses.

Men — who made up a slight 52 percent-to-49 percent majority of all online victims — were the target of choice for bad guys using cars as lures, accounting for 60 percent of such scams last year.

Historically, online auto fraud has involved scammers who try to sell cars they don't own. But the IC3 noted a new flimflam in 2012: criminals who "pose as dealers instead of individuals selling a single car."

"This allows them to advertise multiple vehicles for sale at one time on certain platforms, potentially exposing more victims to the scam," it said.

The figures in the report are likely to be significantly underreported; security experts have warned for years that computer crimes often aren't reported, either because the victim doesn't know whom to call or is too embarrassed to admit having been taken in. And the report almost exclusively tabulates complaints registered in the U.S., meaning it's not a good picture of the entire world of Internet fraud.

But it does provide an interesting snapshot of what the bad guys are doing and how.

Other schemes that accounted for statistically significant losses were:

• Real estate fraud — rental scams, fake time-share marketing, bogus loan modifications and the like — cost a reported $15.4 million.
• General intimidation or extortion — $10.6 million.
• Impersonation of an FBI agent to trick computers into revealing sensitive financial or personal data — $2.3 million.
• The tried and true "hit man" protection scheme, in which the victim is told that he or she has been targeted by a hit man, who'll call off the hit in return for a large sum of money — $1.2 million.

How to stay safe online

Security specialists offer these tips if you suspect you might be dealing with a scam artist:

• Be suspicious if your correspondent accepts only wire transfers or cash.
• If you're buying merchandise, make sure it's from a reputable source. Be wary, for example, of businesses that operate from post office boxes or mail drops.
• Never click on an unsolicited e-mail; instead, go directly to the organization's official website.
• Never give out your credit card number unless you're certain the site is secure and reputable.

The FBI offers an extensive list of warning signs and tips here.

You can file an online fraud complaint here.

Follow M. Alex Johnson on Twitter and Facebook.

Related:

Read the entire IC3 2012 report (.pdf)

Red Tape Chronicles: Net users fall for fake online lovers all the time

Watch US News crime videos on NBCNews.com

An attempt to illegally obtain absentee ballots in Florida last year is the first known case in the U.S. of a cyberattack against an online election system, according to computer scientists and lawyers working to safeguard voting security.

The case involved more than 2,500 “phantom requests” for absentee ballots, apparently sent to the Miami-Dade County elections website using a computer program, according to a grand jury report on problems in the Aug. 14 primary election. It is not clear whether the bogus requests were an attempt to influence a specific race, test the system or simply interfere with the voting. Because of the enormous number of requests – and the fact that most were sent from a small number of computer IP addresses in Ireland, England, India and other overseas locations – software used by the county flagged them and elections workers rejected them.

Computer experts say the case exposes the danger of putting states’ voting systems online – whether that’s allowing voters to register or actually vote.

“It’s the first documented attack I know of on an online U.S. election-related system that’s not (involving) a mock election,” said David Jefferson, a computer scientist at Lawrence Livermore National Laboratory who is on the board of directors of the Verified Voting Foundation and the California Voter Foundation.

Other experts contacted by NBC News agreed that the attempt to obtain the ballots is the first known case of a cyberattack on voting, though they noted that there are so many local elections systems in use that it's possible that a similar attempt has gone unnoticed.

There have been allegations of election system hacking before in the U.S., but investigations of irregularities have found only software glitches, voting machine failures, voter error or inconclusive evidence. Where there has been evidence of a computer security breach -- such as a 2006 incident in Sarasota, Fla., in which  a computer worm that had been around for years raised havoc with the county elections voter database -- it was unclear whether the worm's appearance was timed to interfere with the election.

In any case, experts say they’ve been warning about this sort of attack for years.

Tim Chapman / Miami Herald

About 2,000 rejected absentee ballots at Miami-Dade Elections Department, mostly for lack of signatures or review of signatures from the last election.

“This has been in the cards, it’s been foreseeable,” said law Professor Candice Hoke, founding director of the Center for Election Integrity at Cleveland State University.

The primary election in Miami-Dade County in August 2012 involved state and local races along with U.S. Senate and congressional contests (see a sample ballot here). The Miami Herald, which first reported the irregularities, said the fraudulent requests for ballots targeted Democratic voters in the 26th Congressional District and Republicans in Florida House districts 103 and 112. None of the races’ outcomes could have been altered by that number of phantom ballots, the Herald said.

Overseas “anonymizers” -- proxy servers that make Internet activity untraceable -- kept the originating computers’ location secret and prevented law enforcement from figuring out who was responsible, according to the grand jury report, issued in December. The state attorney’s office closed the case in January without being able to identify a suspect.

Read the Miami-Dade County grand jury report (PDF)

Then came the Herald report, which said that three IP addresses in the United States had been identified among those sending the requests and that there had been a delay in getting that information to investigators, which a Miami-Dade elections official confirmed to NBC News. Terry Chavez, spokeswoman for the state attorney’s office for Miami-Dade County, also confirmed to NBC News that the investigation was reopened to look into those IP addresses. Chavez said she could release no details on the investigation.

Rep. Joe Garcia won the Democratic primary in the 26th District and went on to win the general election. Jeff Garcia, his chief of staff and no relation, said last week that no state or federal investigators had contacted the congressman's office about the case.

State Rep. Jose Javier Rodriguez, a Democrat who won the District 112 seat, said Thursday that his office had not heard from investigators about the case either. A message left at the legislative office of state Rep. Manny Diaz Jr., the Republican who won the primary and the general election in District 103, was not immediately returned.

The Herald report said that as the requests began coming in, elections officials figured out that they were improper and started blocking the IP addresses. “I guess they finally gave up,” the newspaper quoted Bob Vinock, an assistant deputy elections supervisor for information systems, as saying. 

People who study election security say the fact that this attempt did not succeed should be of little comfort to election officials. They warn that attempts to attack voting systems are likely to increase.

“In this case the attack was not as sophisticated as it could have been, and it was easy for elections officials to spot and turn back,” said J. Alex Halderman, an assistant professor of computer science and engineering at the University of Michigan who studies the security of electronic voting. “An attack somewhat more sophisticated than the one in Florida, completely within the norm for computer fraud these days, would likely be able to circumvent the checks.”

Fraudulently obtaining absentee ballots is just one way elections might be subverted by digital means, experts say. Among the other methods and attack points:

•  Malware. Rogue software infects millions of home computers across the country. Jefferson said hackers could use malware to change votes or prevent them from being cast in an online election.
• Denial of service attacks. Jefferson said that hackers could use botnets to prevent election-system servers from working for hours, or perhaps longer. In fact, during an election in June 2012, a DOS attack hit the San Diego County Registrar of Voters' website, preventing voters from tracking the results.
• “Spoofing” of election websites. For example, Hoke said, legitimate requests for absentee ballots could be misdirected to another site. The data then could be misused, or the requests could hit a dead end, and voters would be left wondering where their ballots were.
• Exploiting software flaws in digital voting machines, known as DREs. The flaws could allow insertion of viruses or alteration of programming code that would change votes or delete them. (Read one description of hacking a voting machine.)
• Tampering with email return of marked ballots. Experts say email return is troublesome because of the multiple points for attack along the ballots’ electronic path. “The overwhelming consensus of the computer science community is don’t do it, it’s a bad idea,” said Jeremy Epstein, a senior computer scientist at SRI International. But in about half the states, email absentee ballot return is an option for members of the military and their families, along with some other U.S. citizens living overseas.
• Wholesale hijacking of an online voting system. In 2010, the District of Columbia Board of Elections and Ethics tested an Internet-based voting system for a week, asking computer experts to probe it for flaws. It took only 48 hours for a team led by Halderman to break in and take control of the site – even altering it so that the University of Michigan fight song played after a vote was cast.

Read the University of Michigan researchers’ report on the DC hack (PDF)

In terms of illegally getting access to absentee ballots, Epstein said, the attacker or attackers who failed in Florida might have had an easier time with Washington state and Maryland.

He said that last summer he demonstrated to the FBI a method of changing individual voters’ addresses and other information online in those two states by predicting their driver’s license numbers.

J Pat Carter / AP file

Absentee ballots for the general election marked for delivery to the U.S. Postal Service for mailing are seen at the Miami-Dade County election center in Doral, Fla., on Oct. 5.

First he used publicly available information to gain a voter’s full name and address. Then, he predicted the individual’s driver’s license number – which is based on a combination of the person’s name and numbers and letters -- and used the information to access their voter registration online. From there, he said, he could have changed their addresses and had absentee ballots sent out.

“Imagine if (attackers) changed the address for 2,500 votes. It could be completely automated, and they have the ballots sent to a post office box or whatever,” Epstein said. “Then the registered voters would have no idea until they tried to vote.”

In October, Halderman and other researchers sent letters warning elections officials in both states of the danger of staking system security on driver’s license numbers.

The letter to Washington officials (read it here in PDF) also said that other security features in the state’s MyVote system would be only a speed bump to a dedicated hacker.

“Although the MyVote system uses a CAPTCHA, an image of distorted text intended to deter simple automated attacks, this provides only minimal defense,” the letter says. “Attackers can use commercial services to defeat the CAPTCHA at a cost of less than $0.001 per voter.”

Shane Hamlin, assistant director of elections in the Washington Secretary of State's Office, told NBC News that state election officials have acted on the recommendations in the October letter and will require additional information to register to vote or change registration online.

Maryland election officials did not immediately return a call from NBC News seeking comment, but the Washington Post reported last month that Ross K. Goldstein, deputy administrator of the Maryland State Board of Elections, acknowledged the security hole and said the online voter registration system was being updated to address the issue.

“I believe technology can solve problems, and there are steps that we definitely can, and plan to, take to mitigate the risks,” the newspaper quoted him as saying.

While elections officials are attracted to the savings that online voting and registration systems promise, the cost of guarding online registration and voting systems is large, Hoke said. And that might negate the financial advantage of online balloting touted by some elections officials and vendors who want to sell electronic voting products.

“It’s cheap, if you don’t care whether elections are stolen,” she said.

That possibility -- of an election being stolen through digital means -- haunts researchers. For Jefferson, it’s a matter of national security.

“The legitimacy of government depends on it being impossible for single parties to change the results of elections,” he said.

More from Open Channel:

• ACLU beats CIA — a little — in court battle over drone documents
• US, Iran secretly discussed swap of al Qaeda detainees for Iranian dissidents
• ID thieves target hospital patients to steal tax refunds, investigators say

Follow Open Channel from NBCNews.com on Twitter and Facebook 

ICE

A search warrant for a child pornography case.

Federal agents targeting child pornography offenses say they arrested 190 people in May and rescued 18 children who were being victimized by the accused perpetrators, in a stepped-up focus on these crimes.

Follow @msnbc_us

Follow Kari Huus on Twitter and Facebook.

The Immigration and Customs Enforcement, or ICE, which investigates a wide range of crimes that cross state or national borders, is one of the main federal agencies — along with the FBI — to handle child porn and exploitation investigations. That includes tracking perpetrators who use the Internet to lure or meet child victims, to persuade them to send nude pictures to produce porn or to receive or distribute child pornography.

The targeted operation coincides with the end of the school year, said ICE spokesman Dani Bennett.

"From our perspective the summer months are times when kids are not in school and many have unsupervised access to the Internet," said Bennett. "It’s a good time to remind parents that the person they are chatting with may not be the person they are chatting with. ... Every social network, every wonderful tool the Internet provides can be exploited."

Among the arrests reported by ICE:

• Joshua Stewart, 23, arrested in Rochester, N.Y., on May 4 on charges of coercing and enticing a minor via the Internet, which allegedly began as "sexting" with the 13-year-old.
• Thomas Wright, 54, arrested May 16 at his residence in Bangor, Mich., on an outstanding federal arrest warrant accusing him of manufacturing and possessing child pornography. Wright allegedly persuaded an underage boy to participate with him in illegal sexual conduct while he photographed the encounters. Wright also secretly videotaped the boy involved in other sexual activity, according to ICE. Wright allegedly transported the images from his home in Michigan to Florida.
• Cedric Conner, 35, of Lafayette, La., arrested May 4 in Lafayette for allegedly producing child pornography based on his sexual assault of a 7-year-old victim whom he babysat.

Nine of the suspected child predators were arrested in the San Diego area, including a 28-year-old Marine Corps helicopter pilot who is accused of possessing 4,000 images and 43 video files of child pornography, some depicting child bestiality and child bondage, according to a report by NBC San Diego. NBC identified him as Capt. Joshua Taylor, who was stationed at Marine Corps Air Station Miramar.

The arrests made during the month-long Operation Orion were mainly in the United States, but also included arrests in Spain, the Philippines, Argentina and the United Kingdom.

Judge refuses to dismiss Sandusky charges; trial set to bein Monday

The 190 arrests in May represented a  “significant number” for one month, Bennett said. ICE arrested 1,455 suspected child predators in the 2011 fiscal year, which ended on Sept. 30, 2011, she said, up from 922 a year earlier.

Typically, she said, ICE is responsible for more than half of the federal cases involving child sexual exploitation.

In 2011, Bennett said, agency investigations resulted in 915 convictions on child porn-related charges with sentences ranging from a few years to life in prison, depending on the severity of the offense and the age of the victim — who are sometimes as young as infants.

As part of the operation, ICE worked with local authorities and child protection agencies to move child victims to safety, including removing them from exploitative parents.

"We are getting better at it," said Bennett. "This is one of the most important things we do."

More content from msnbc.com and NBC News:

• Oil boom brings wealth and waste to North Dakota
• Man using Zimmerman's old cell phone number gets threatening call
• 3 men found shot dead in car near Columbia University in New York
• Did Canada's alleged cannibal killer Luka Magnotta strike in LA?
• Video: Siblings late to school 160 times
• How hidden camera confession helped clear high school football star

Follow US News on msnbc.com on Twitter and Facebook

Follow Kari Huus on Facebook