INTERPOL Arrests 201 in MENA Cybercrime Sweep Backed by Kaspersky Intelligence
INTERPOL has concluded a large-scale cybercrime operation across the Middle East and North Africa, resulting in 201 arrests and the identification of 382 further suspects, with threat intelligence from Kaspersky playing a central role in the crackdown.
Operation Ramz, which ran from October 2025 to February 2026 across 13 countries, targeted phishing networks, malware distribution infrastructure and cyber scams that left nearly 4,000 individuals as victims. The operation marks the first cybercrime action of its scale coordinated by INTERPOL in the MENA region.
Kaspersky’s Threat Research expertise centre supplied law enforcement with technical data on region-specific cyberthreats, including information on malware command-and-control servers used to distribute and manage malicious software. Nearly 8,000 pieces of data and intelligence were disseminated among participating countries to initiate and support investigations.
Neal Jetton, INTERPOL’s Director of Cybercrime, said the operation demonstrated what coordinated cross-border action can achieve. “In a world where cybercriminals exploit the digital landscape without borders, Operation Ramz demonstrates the effectiveness of global collaboration. INTERPOL is dedicated to working with its member countries and private sector partners to take down malicious infrastructure, disrupt criminal groups and bring perpetrators to justice.”
Yuliya Shlychkova, VP of Global Public Affairs at Kaspersky, said the outcome illustrated the value of public-private intelligence sharing. “Operation Ramz shows how the synergy between law enforcement agencies and private sector experts can dismantle sophisticated cybercrime networks at scale. By delivering timely, high-quality threat intelligence, we empower investigators to act swiftly, safeguard users, and ultimately make the digital ecosystem safer for everyone.”
Across participating countries, the operation produced several notable enforcement actions. In Jordan, police tracked a machine running financial fraud scams through a platform that solicited investment deposits before shutting down; a raid uncovered 15 individuals conducting the scheme, with two principal suspects arrested.
In Algeria, authorities dismantled a phishing-as-a-service website, seizing a server, computer, mobile phone and hard drives containing phishing software, and taking one suspect into custody. In Morocco, investigators seized computers, smartphones and external hard drives holding banking data and phishing tools, with three individuals facing judicial proceedings and others under active investigation. In Oman, a server holding sensitive data was located in a private residence and disabled. In Qatar, compromised devices were identified and secured, with owners notified to take protective measures.
The operation involved Algeria, Bahrain, Egypt, Iraq, Jordan, Lebanon, Libya, Morocco, Oman, Palestine, Qatar, Tunisia and the UAE.
Kaspersky’s threat intelligence platform currently tracks more than 300 threat actors and over 500 malicious campaigns globally. The company said it remains committed to supporting law enforcement with tactical and strategic cyberthreat data as part of a broader stance on collaborative crime prevention.
Go to TECHTRENDSKE.co.ke for more tech and business news from the African continent and across the world.
Follow us on WhatsApp, Telegram, Twitter, and Facebook, or subscribe to our weekly newsletter to ensure you don’t miss out on any future updates. Send tips to editorial@techtrendsmedia.co.ke
