Coordinated Takedown Across the MENA Region
INTERPOL has concluded a major law enforcement operation targeting cybercriminal networks operating across the Middle East and North Africa. The operation, named Ramz, involved authorities from 13 countries working together between October 2025 and February 2026. The coordinated effort resulted in 201 arrests and the identification of 382 additional suspects, representing a significant disruption to regional cybercrime activities.
Law enforcement agencies focused on dismantling malicious infrastructure, apprehending perpetrators, and preventing future financial losses. Beyond the arrests, authorities identified 3,867 victims and seized 53 servers used to facilitate cybercriminal operations.
Key Actions and Seized Infrastructure
Algerian authorities disrupted a phishing-as-a-service operation by confiscating a server along with computers, mobile phones, and hard drives containing phishing software and scripts. One suspect was arrested in connection with this scheme. In Morocco, officials seized devices that held banking data and phishing software, further crippling regional phishing operations.
Investigators in Oman identified a legitimate server located in a private residence that contained sensitive information. The server had multiple critical security vulnerabilities and was infected with malware, leading authorities to disable it. Similarly, in Qatar, compromised devices were discovered where the owners were unaware their systems were being used to spread malicious threats. Those devices were secured, and owners received guidance on protective measures. In Jordan, police raided a location where 15 individuals were running financial fraud scams, tricking victims into investing in a fake trading platform that shut down after deposits were made.
Source: The Hacker News
