What is the story about?
The International Criminal Police Organization (Interpol) has announced the successful completion of Operation Ramz, describing it as the largest cybercrime crackdown in the agencyβs history.
The operation, carried out across 13 countries in West Asia and North Africa between October 2025 and February 2026, focused on tackling phishing campaigns, malware threats and cyber scams that caused major financial losses across the region.
Authorities said the operation aimed to dismantle malicious online infrastructure, identify suspects linked to cybercriminal activities and prevent future financial damage.
The international operation resulted in the arrest of 201 individuals, while investigators also identified 382 additional suspects.
Authorities seized 53 servers during the investigation and identified 3,867 victims connected to the cybercrime networks.
According to Interpol, participating countries exchanged nearly 8,000 pieces of critical intelligence and data to support ongoing investigations and coordinated enforcement efforts.
Interpol worked alongside several cybersecurity organisations during Operation Ramz, including Group-IB, Kaspersky, the Shadowserver Foundation, Team Cymru and TrendAI.
The agencies helped investigators monitor malicious cyber activity, trace digital infrastructure and locate compromised servers used in the attacks.
Authorities in Qatar identified infected devices that were unknowingly being used to spread cyber threats. Following the investigation, the systems were secured and their owners were informed.
In Jordan, police uncovered a financial fraud scheme linked to a fake trading platform. Investigators found that 15 people involved were victims of human trafficking, while two suspected organisers were arrested.
Investigators in Oman discovered a malware-infected server operating from a private residence. Officials said the system contained sensitive information and serious security vulnerabilities before it was disabled.
Algerian authorities dismantled a phishing-as-a-service platform and seized a server, a computer, a phone, hard drives and phishing scripts during the operation.
In Morocco, officials confiscated devices and banking information connected to phishing activities, leading to judicial proceedings against three individuals while investigations into others continue.
Neal Jetton, Interpol's Director of Cybercrime, said international cooperation played a central role in the success of the operation.
βIn a world where cybercriminals exploit the digital landscape without borders, Operation Ramz demonstrates the effectiveness of global collaboration,β he said.
He added, "Interpol is dedicated to working with its member countries and private sector partners to dismantle malicious infrastructure, disrupt criminal groups, and bring perpetrators to justice.β
The operation, carried out across 13 countries in West Asia and North Africa between October 2025 and February 2026, focused on tackling phishing campaigns, malware threats and cyber scams that caused major financial losses across the region.
Authorities said the operation aimed to dismantle malicious online infrastructure, identify suspects linked to cybercriminal activities and prevent future financial damage.
Hundreds arrested and servers seized
The international operation resulted in the arrest of 201 individuals, while investigators also identified 382 additional suspects.
Authorities seized 53 servers during the investigation and identified 3,867 victims connected to the cybercrime networks.
According to Interpol, participating countries exchanged nearly 8,000 pieces of critical intelligence and data to support ongoing investigations and coordinated enforcement efforts.
Cybersecurity firms assisted investigation
Interpol worked alongside several cybersecurity organisations during Operation Ramz, including Group-IB, Kaspersky, the Shadowserver Foundation, Team Cymru and TrendAI.
The agencies helped investigators monitor malicious cyber activity, trace digital infrastructure and locate compromised servers used in the attacks.
Authorities in Qatar identified infected devices that were unknowingly being used to spread cyber threats. Following the investigation, the systems were secured and their owners were informed.
In Jordan, police uncovered a financial fraud scheme linked to a fake trading platform. Investigators found that 15 people involved were victims of human trafficking, while two suspected organisers were arrested.
Investigators in Oman discovered a malware-infected server operating from a private residence. Officials said the system contained sensitive information and serious security vulnerabilities before it was disabled.
Algerian authorities dismantled a phishing-as-a-service platform and seized a server, a computer, a phone, hard drives and phishing scripts during the operation.
In Morocco, officials confiscated devices and banking information connected to phishing activities, leading to judicial proceedings against three individuals while investigations into others continue.
Interpol highlights global cooperation
Neal Jetton, Interpol's Director of Cybercrime, said international cooperation played a central role in the success of the operation.
βIn a world where cybercriminals exploit the digital landscape without borders, Operation Ramz demonstrates the effectiveness of global collaboration,β he said.
He added, "Interpol is dedicated to working with its member countries and private sector partners to dismantle malicious infrastructure, disrupt criminal groups, and bring perpetrators to justice.β
