A global law enforcement crackdown coordinated by INTERPOL has dismantled more than 45,000 malicious IP addresses and servers used to launch cyberattacks worldwide, in an operation that also underscores Nigeria’s growing exposure to ransomware and other cyber threats.
Codenamed Operation Synergia III, INTERPOL said the initiative ran from July 18, 2025 to January 31, 2026, bringing together law enforcement agencies from 72 countries and territories. The operation led to the arrest of 94 suspects, while 110 others remain under investigation.
Investigators also seized 212 electronic devices and servers during coordinated raids targeting infrastructure used to host phishing campaigns, malware distribution, ransomware attacks and other forms of online fraud.
According to INTERPOL’s Africa Cyberthreat Assessment, Nigeria recorded about 3,459 ransomware detections in 2024, making it the third most targeted country in Africa. Nigerian authorities have also been actively involved in regional enforcement actions. In one such operation, 130 suspects linked to cyber-enabled scams, including online casino and investment fraud schemes targeting victims across multiple countries, were arrested.
Cybercrime: Nigeria in focus amid rising cyber threats
The latest crackdown comes at a time when cybercrime is intensifying globally and across Africa, with Nigeria emerging as one of the continent’s key hotspots.
According to INTERPOL’s Africa Cyberthreat Assessment, Nigeria recorded about 3,459 ransomware detections in 2024, making it the third most targeted country in Africa. Nigerian authorities have also been actively involved in regional enforcement actions. In one such operation, 130 suspects linked to cyber-enabled scams, including online casino and investment fraud schemes targeting victims across multiple countries, were arrested.
The figures highlight the dual reality of Nigeria’s cyber landscape: a major target for global cybercriminals, but also an increasingly active player in international enforcement efforts.
Global cybercrime networks exposed
Preliminary findings from Operation Synergia III reveal the scale and sophistication of cybercriminal networks operating across multiple jurisdictions.
In Macau, China, authorities uncovered more than 33,000 phishing and fraudulent websites designed to mimic legitimate platforms such as banks, government portals and payment services. Victims were lured into depositing funds via fake casino platforms or tricked into revealing sensitive personal and financial information.
In Togo, police arrested 10 suspects linked to a fraud ring operating from a residential area. The group allegedly compromised social media accounts and deployed social engineering tactics, including romance scams and sextortion, to defraud victims. Once accounts were hijacked, the suspects reportedly impersonated victims to solicit money from their contacts.
Meanwhile, authorities in Bangladesh arrested 40 suspects and seized 134 electronic devices connected to cybercrime activities ranging from loan and job scams to identity theft and credit card fraud.
INTERPOL said the operation combined intelligence sharing, advanced analytics and coordinated cross-border action to disrupt digital criminal ecosystems.
Neal Jetton, Director of INTERPOL’s Cybercrime Directorate, said the operation demonstrates the growing importance of international cooperation in tackling evolving cyber threats.
“Cybercrime in 2026 is more sophisticated and destructive than ever before, but Operation Synergia III stands as a powerful testament to what global cooperation can achieve,” Jetton said. “INTERPOL remains at the forefront of this fight, uniting law enforcement agencies and private sector experts to dismantle criminal networks, disrupt emerging threats and protect victims around the world.”
As part of the initiative, INTERPOL partnered with leading cybersecurity firms including Group-IB, Trend Micro, and S2W to track malicious infrastructure and identify servers linked to cybercrime campaigns.
Home
