Cyber Crime
INTERPOL, Private Sector, and Law Enforcement from 95 Countries Dismantle Major Malware Infrastructure
GLASGOW, UNITED KINGDOM: In a decisive blow against cybercrime, INTERPOL has dismantled more than 22,000 malicious IP addresses and servers linked to phishing, ransomware, and data theft.
The effort, part of Operation Synergia II conducted between April 1 and August 31, 2024, was a collaborative initiative involving INTERPOL, private sector partners, and law enforcement agencies from 95 member countries.
Of approximately 30,000 suspicious IP addresses identified, 76% were neutralized, along with the seizure of 59 servers and 43 electronic devices, including laptops, mobile phones, and hard drives. Authorities arrested 41 individuals, with 65 others still under investigation.
A Unified Global Effort
The operation harnessed the expertise of cybersecurity firms such as Group-IB, Trend Micro, Kaspersky, and Team Cymru to track and identify malicious cyber activities. Using intelligence shared by INTERPOL, participating nations carried out targeted investigations, coordinated raids, and lawful confiscations of compromised servers and digital equipment.
Several countries played pivotal roles:
- Hong Kong (China): Disconnected over 1,037 servers linked to harmful activities.
- Mongolia: Conducted 21 house searches, seized a server, and identified 93 individuals connected to illegal cyber operations.
- Macau (China): Took 291 malicious servers offline.
- Madagascar: Detected 11 individuals involved in cybercrime and confiscated 11 devices for further investigation.
- Estonia: Secured over 80GB of server data for in-depth analysis on phishing and banking malware.
Addressing Escalating Cyber Threats
INTERPOL’s Cybercrime Directorate, led by Neal Jetton, emphasized the importance of global collaboration in tackling the rapidly evolving nature of cybercrime.
“By dismantling malicious infrastructure, we’ve not only reduced the threat but also protected countless individuals and businesses from becoming victims. This operation showcases the power of collective action in making the digital world safer,” said Jetton.
ALSO READ: Nominations Open for ‘Women in Cyber’ Honors at FutureCrime Summit 2025
Targeting Key Cybercrimes
Operation Synergia II addressed three primary cyber threats that pose significant risks to individuals and businesses worldwide:
- Phishing: As one of the most common initial access tactics, phishing is increasingly sophisticated, often leveraging generative AI to create realistic and multi-lingual bait emails that bypass detection systems.
- Info stealers: These malicious programs infiltrate systems to extract sensitive information like login credentials and financial details. The use of infostealers has surged, with a 40% increase in the sale of stolen logs on dark web platforms in 2023.
- Ransomware: Ransomware attacks have grown by 70% globally, targeting a broader range of industries and regions, with devastating financial and operational impacts.
By uniting the efforts of law enforcement, private companies, and member nations, Operation Synergia II has set a precedent for combating transnational cybercrime, safeguarding digital infrastructure, and thwarting the operations of cybercriminal networks.