The UK’s National Crime Agency has warned that some teenagers are being “radicalized” into cybercrime through online communities that normalize hacking, fraud, extortion and other offenses. Speaking about the broader impact of technology on crime, NCA Director General Graeme Biggar said digital platforms are lowering barriers to entry and helping pull young people into criminal activity earlier.
According to Infosecurity Magazine’s report on the remarks, the NCA sees the issue as more than a policing problem. Officials are framing it as a safeguarding concern, arguing that minors can be groomed by online groups that offer status, belonging, money and step-by-step guidance for cyber-enabled crime. Those pathways can include phishing, credential theft, SIM swapping, DDoS-for-hire services, ransomware affiliate work and money mule activity.
The warning reflects a wider shift in law enforcement thinking: cybercrime is no longer only about malware and exploited systems, but also about recruitment ecosystems on Telegram, Discord, underground forums and social media. In those spaces, technical curiosity can quickly turn into criminal behavior, especially when stolen tools, tutorials and services are easy to buy or access.
The impact is broad. For victims, younger offenders can still cause serious disruption, particularly in account takeover, fraud and extortion schemes. For schools and parents, the NCA’s language suggests cybercrime grooming should be treated more like other youth risk issues, with earlier intervention and better awareness of how online communities influence behavior. For defenders, it is another sign that less-skilled actors can now participate in damaging attacks because criminal marketplaces and affiliate models do much of the heavy lifting.
The NCA’s message also echoes concerns raised across Europe about cybercrime-as-a-service and the social side of offender recruitment. While this is not a vulnerability disclosure story tied to a specific CVE or malware campaign, it highlights a growing security problem: the industrialization of cybercrime is making it easier to recruit and use young people as disposable operators.
