INTERPOL has successfully executed a large-scale operation targeting cybercrime across the Middle East and North Africa (MENA), resulting in the arrest of 201 individuals and the identification of an additional 382 suspects. This initiative, known as Operation Ramz, involved collaboration among 13 countries from October 2025 to February 2026.
Focus of the Operation
The operation aimed to dismantle malicious infrastructure related to phishing, malware, and cyber scams, which have caused significant financial losses in the region. INTERPOL stated, “The operation focused on neutralizing phishing and malware threats, as well as tackling cyber scams that inflict severe cost to the region.” In total, 3,867 victims were identified, and 53 servers were seized during the operation.
Key Findings and Actions
One notable outcome was the disruption of a phishing-as-a-service (PhaaS) operation in Algeria, where authorities confiscated a server along with devices containing phishing software and scripts. Additionally, Moroccan law enforcement seized computers and external hard drives that held banking data and phishing tools. In Oman, a legitimate server located in a private residence was found to have multiple critical security vulnerabilities and was infected with malware; actions were taken to disable it.
Unawareness of Compromised Devices
In Qatar, compromised devices were discovered being used to propagate malicious threats, with the owners unaware of their involvement. Although the specific nature of these threats was not disclosed, the affected devices were secured, and the owners were notified to enhance their security measures.
Financial Fraud and Human Trafficking
Jordanian authorities uncovered a computer used in financial fraud scams, where victims were misled into investing in a fake trading platform. During a raid, 15 individuals were found to be involved in the scams; however, they were identified as victims of human trafficking, having been coerced into participating under false employment promises. Two individuals suspected of orchestrating this operation were arrested.
Private sector collaboration was also a key element of the operation, with Group-IB providing intelligence on over 5,000 compromised accounts, including those linked to government infrastructure. Joe Sander, CEO of Team Cymru, emphasized the importance of international cooperation in combating cybercrime, stating, “Cybercrime is borderless, and the only effective response is one that is equally borderless.” Countries involved in Operation Ramz included Algeria, Bahrain, Egypt, Iraq, Jordan, Lebanon, Libya, Morocco, Oman, Palestine, Qatar, Tunisia, and the U.A.E.
This article was produced by NeonPulse.today using human and AI-assisted editorial processes, based on publicly available information. Content may be edited for clarity and style.
