INTERPOL made a significant move on Friday by dismantling 45,000 malicious IP addresses and servers used in various cybercrime activities, including phishing, malware, and ransomware campaigns. This operation is part of the organization’s continuous efforts to disrupt criminal networks, combat emerging threats, and protect victims from scams.
The global law enforcement operation involved 72 countries and territories, resulting in the arrest of 94 individuals, while 110 others remain under investigation. Authorities seized a total of 212 electronic devices and servers during raids at key locations.
In Bangladesh, a crackdown led to the arrest of 40 suspects and the confiscation of 134 electronic devices linked to cybercrimes such as loan scams, job scams, identity theft, and credit card fraud. Similarly, in Togo, authorities apprehended 10 suspects involved in hacking social media accounts, running fraud schemes, and engaging in activities like romance scams and sextortion.
The fraudsters in Togo would gain unauthorized access to victims’ accounts, then impersonate the account holders to deceive their online contacts, creating fake romantic relationships to eventually trick them into making money transfers.
In another operation in Macau, law enforcement officials identified over 33,000 phishing and fraudulent websites related to fake casinos and critical infrastructure. These websites aimed to defraud victims by misleading them into providing personal information or topping up balances.
Operation Synergia’s third phase, conducted between July 18, 2025, and January 31, 2026, marks a significant milestone in combating cybercrime. Previous phases in 2023 and 2024 also resulted in the identification of malicious servers and numerous arrests.
India Cracks Down on Transnational Fraud Case
India’s Central Bureau of Investigation (CBI) recently carried out searches across Delhi, Rajasthan, Uttar Pradesh, and Punjab in connection with a large-scale organized online investment and job fraud linked to a Dubai-based fintech platform known as Pyypl.
The CBI’s investigation revealed that an organized transnational fraud syndicate operating through social media platforms, mobile applications, and encrypted messaging services duped thousands of Indian citizens through deceptive online schemes promising high returns from investments and part-time job opportunities.
These fraudulent activities, as highlighted by Proofpoint in October 2024, aimed to gain victims’ trust by showing fictitious profits on fake sites, convincing them to deposit small amounts, and eventually persuading them to invest larger sums.
Once victims made deposits, the funds were swiftly transferred through multiple bank accounts to cover the money trail, then cashed out through offshore ATM withdrawals and wallet top-ups on overseas fintech platforms like Pyypl using Visa and Mastercard networks.
According to the CBI, the fraudulent transactions appeared as point-of-sale (PoS) transactions in banking systems to evade detection. Some of the stolen funds were converted to cryptocurrency and channeled through 15 shell companies and two entities.
The investigating agency identified Ashok Kumar Sharma and other co-conspirators as key members of the syndicate, with Sharma already in custody. Bank accounts associated with the entities have been frozen, and incriminating evidence related to the syndicate’s operations has been seized.
