Search This Blog
Powered by Blogger.

Blog Archive

Labels

Footer About

Footer About

Labels

Load More
Trendy Right Now

Popular Posts

Showing posts with label Interpol. Show all posts
Phishing Attack
Cyber Security cybercriminal group Europol Fake Accounts Fake SIM Card Fraud Interpol Phishing Attack

Europol Dismantles SIMCARTEL Network Behind Global Phishing and SIM Box Fraud Scheme

 

Europol has taken down a vast international cybercrime network responsible for orchestrating large-scale phishing, fraud, and identity theft operations through mobile network systems. The coordinated crackdown, codenamed “SIMCARTEL,” led to multiple arrests and the seizure of a massive infrastructure used to fuel telecom-based criminal activity across more than 80 countries. 

Investigators from Austria, Estonia, and Latvia spearheaded the probe, linking the criminal network to over 3,200 cases of fraud, including fake investment scams and emergency call frauds designed for quick financial gain. The financial toll of the operation reached approximately $5.3 million in Austria and $490,000 in Latvia, highlighting the global scale of the scheme. 

The coordinated action, conducted primarily on October 10 in Latvia, resulted in the arrest of seven suspects and the seizure of 1,200 SIM box devices loaded with nearly 40,000 active SIM cards. Authorities also discovered hundreds of thousands of unused SIM cards, along with five servers, two websites, and several luxury vehicles. Around $833,000 in funds across bank and cryptocurrency accounts were also frozen during the operation. 

According to Europol, the infrastructure was designed to mask the true identities and locations of perpetrators, allowing them to create fake social media and communication accounts for cybercrimes. “The network enabled criminals to establish fraudulent online profiles that concealed their real identity and were then used to carry out phishing and financial scams,” Europol said in a statement. 

Investigators have traced the network to over 49 million fake accounts believed to have been created and distributed by the suspects. These accounts were used in a range of crimes, including extortion, smuggling, and online marketplace scams, as well as fake investment and e-commerce schemes. 

The operation highlights the growing global threat of SIM farms—collections of SIM boxes that allow cybercriminals to automate scams, send spam, and commit fraud while remaining undetected by telecom providers. These systems have become a preferred tool for large-scale phishing and social engineering attacks worldwide. 

Just weeks earlier, the U.S. Secret Service dismantled a similar network in New York City, seizing over 300 servers and 100,000 SIM cards spread across several locations. 

Cybersecurity intelligence firm Unit 221B also issued a warning that SIM farms are rapidly multiplying and putting telecom providers, banks, and consumers at risk. “We’ve identified at least 200 SIM boxes operating across dozens of U.S. sites,” said Ben Coon, Chief Intelligence Officer at Unit 221B. 

While the SIMCARTEL takedown marks a major victory for law enforcement, Europol noted that investigations are still underway to uncover the full extent of the criminal infrastructure. Authorities emphasize that combating SIM box networks is essential to defending users against phishing, identity fraud, and telecom-based cyberattacks that continue to grow in sophistication and scale.
Read more »
Operation Serengeti
Afripol Cyber Crime digital scam Financial Fraud Interpol Operation Serengeti

Interpol and Afripol Arrest Kenyans Involved in Digital Scams

Interpol and Afripol Arrest Kenyans Involved in Digital Scams


Interpol and Afripol recently carried out “Operation Serengeti” a major international operation, cracking down on cybercrime throughout 19 African countries, arresting 1,006 and disrupting 134,089 malicious networks and infrastructures. The two agencies recovered USD 43,954,537, and more than 20 Kenyans were arrested in the two-month sting operation. The arrested Kenyans were involved in online credit card fraud. 

“Operation Serengeti shows what we can achieve by working together, and these arrests alone will save countless potential future victims from personal and financial pain,” said Valdecy Urquiza, Secretary General of INTERPOL. 

About Operation Serengeti 


The operation ran from September to October 2024, cracking down on various cybercrimes like business email compromise (BEC), ransomware, online scams, and digital extortion. The law agencies found 35,000 victims and cases linked to worldwide financial losses worth USD 193 million.  

The joint effort led to the disruption of cybercriminal activities and improved the efforts of law enforcement agencies in African Union member nations. 

Key events in Sting Operation 


The arrested Kenyans were involved in online credit card fraud and responsible for global banking systems losing US$8.6 million. 

The stolen money was sent via SWIFT to digital asset firms to countries Nigeria, China, and the UAE. The joint operation also resulted in the arrest of digital scammers in other countries Cameroon, Angola, Senegal, and Nigeria. 

“Through Serengeti, AFRIPOL has significantly enhanced support for law enforcement in African Union Member States. We have facilitated key arrests and deepened insights into cybercrime trends. Our focus now includes emerging threats like AI-driven malware and advanced attack techniques,” Jalela Chelba, AFRIPOL’s Executive Director said. 

Rise of financial fraud in Kenya 


TransUnion report analysis reveals Kenya is 10th in Digital Fraud suspects out of 19 countries in the first half of 2024. In the case of digital transactions carried out in Kenya, around 4.6% were traced as suspected Digital Fraud. 

Credit card fraud is the leading problem in the financial sector, scammers steal the card info of victims and access their accounts. They do this via application fraud and account takeovers.
Read more »
Law Enforcement
Africa Cyber Crime Cyber Operation Interpol Law Enforcement

Over 1,000 People Arrested by Interpol in Africa as it Cracks Down on Cybercrime

 

During a two-month operation to combat cybercrime that left tens of thousands of victims, including some who were trafficked, and caused millions of dollars in financial losses, Interpol detained 1,006 suspects across Africa, the international police agency said Tuesday. 

The agency said in a statement that Operation Serengeti, a combined operation with Afripol, the African Union's police agency, targeted criminals responsible for ransomware, business email breach, digital extortion, and online frauds, took place in 19 African countries between September 2 and October 31.

“From multi-level marketing scams to credit card fraud on an industrial scale, the increasing volume and sophistication of cybercrime attacks is of serious concern," stated Valdecy Urquiza, the Secretary General of Interpol. 

Local law enforcement and business sector partners, including internet service providers, were instrumental in the investigation, according to Interpol, which identified 35,000 victims and related cases to international financial losses of nearly $193 million. 

In a case involving online credit card theft that resulted in losses of $8.6 million, Kenyan police made around two dozen arrests. Eight individuals, including five Chinese nationals, were arrested by police in Senegal, a country in West Africa, for involvement in a $6 million online Ponzi scheme.

Chelba stated that Afripol's attention is now on new threats such as AI-driven malware and advanced cyberattack strategies. Other demolished networks included a Cameroonian organisation suspected of using a multi-level marketing fraud for human trafficking, an Angolan international criminal cell operating an illegal virtual casino, and a Nigerian cryptocurrency investment scam, according to the agency. 

Interpol, which has 196 member nations and celebrated its centenary last year, helps national police forces communicate with one another and seek down suspects and offenders in domains such as counterterrorism, financial crime, child pornography, cybercrime, and organised crime. 

The world's largest, if not best-funded, police organisation has faced novel challenges, including an increase in cybercrime and child sex abuse cases, as well as rising tensions among member countries. Interpol had a total budget of about 176 million euros (about $188 million) last year, compared to more than 200 million euros at Europol, the European Union's police agency, and approximately $11 billion at the FBI in the United States.
Read more »
Ransomware
Cyber Crime Infostealer Interpol Malware Distribution Operation Synergia phishing Ransomware

Operation Synergia II: A Global Effort to Dismantle Cybercrime Networks

Operation Synergia II: A Global Effort to Dismantle Cybercrime Networks

In an unprecedented move, Operation Synergia II has significantly strengthened global cybersecurity efforts. Led by INTERPOL, this extensive operation focused on dismantling malicious networks and thwarting cyber threats across 95 countries. Spanning from April to August 2024, the initiative marks a monumental step in international cybercrime prevention.

Global Collaboration

Operation Synergia II aimed to tackle a range of cybercrimes, including phishing, malware distribution, and ransomware attacks. Cybercriminals exploit vulnerabilities to steal sensitive information, disrupt services, and extort money. The operation's success lies in its collaborative approach, involving INTERPOL, private cybersecurity firms like Kasperksy, and national law enforcement agencies. This partnership was crucial in sharing intelligence, resources, and expertise, enabling swift and effective actions against cyber threats.

The Scope of the Operation

In Hong Kong, authorities dismantled over 1,000 servers linked to cybercrimes, while investigators in Mongolia confiscated equipment and identified 93 suspects. Macau and Madagascar also played vital roles by deactivating hundreds of servers and seizing electronic devices.

Neal Jetton, Director of Interpol's Cybercrime Directorate, remarked, “The global nature of cybercrime requires a global response… Together, we’ve dismantled malicious infrastructure and protected countless potential victims.”

Key Achievements

The operation led to the seizure of over 22,000 malicious IP addresses and servers. This massive takedown disrupted numerous criminal networks, preventing further attacks and mitigating potential damages. The seized assets included servers used for hosting phishing websites, distributing malware, and coordinating ransomware operations.

Impact Areas

Phishing Schemes: Phishing remains one of the most prevalent and dangerous forms of cybercrime. Cybercriminals use deceptive emails and websites to trick individuals into revealing personal information, such as passwords and credit card details. By targeting and taking down phishing servers, Operation Synergia II significantly reduced the risk of individuals falling victim to these scams.

Malware Distribution: Malware, or malicious software, can cause extensive damage to individuals and organizations. It can steal sensitive information, disrupt operations, and even take control of infected systems. The operation's success in dismantling malware distribution networks has helped curb the spread of harmful software and protect countless users.

Ransomware Attacks: Ransomware is a type of malware that encrypts a victim's files, demanding payment for their release. It has become a major threat to businesses, governments, and individuals worldwide. By targeting the infrastructure used to deploy ransomware, Operation Synergia II has disrupted these extortion schemes and safeguarded potential victims.

Read more »
Synergia operation
Cyber Security cybercriminal arrests Cybersecurity digital space protection global C2 servers Interpol Law Enforcement Online Security phishing Ransomware Synergia operation

Interpol's Operation 'Synergia' Secures Numerous Cybercriminal Arrests, Disrupts Global C2s

 

An international operation aimed at countering the rising threat of phishing, banking malware, and ransomware attacks globally has successfully dismantled command-and-control (C2) servers across Africa and the Middle East. Led by Interpol, the Synergia operation engaged 60 law enforcement agencies, including 17 from the Middle East and Africa (MEA) region. 

Notably, significant takedowns occurred in South Sudan and Zimbabwe, resulting in four arrests. Kuwait law enforcement collaborated with Internet Service Providers (ISPs) to identify victims, conduct field investigations, and provide technical guidance to mitigate the impacts of cyber threats.

Collaborating with local law enforcement and cybersecurity firms such as Group-IB, Kaspersky, ShadowServer, Team Cymru, and TrendMicro, Interpol executed the operation from September to November. The global initiative led to the arrest of 31 individuals and the identification of 70 additional suspects.

Beyond the MEA region, the operation yielded notable results worldwide:

- Europe witnessed the majority of C2 server takedowns, resulting in 26 arrests.
- The Hong Kong and Singapore Police successfully took down 153 and 86 servers, respectively.
- Bolivia mobilized various public authorities to identify malware and vulnerabilities.

Synergia also uncovered malicious infrastructure and resources in over 50 countries, spread across 200 web hosting providers globally. Currently, 70% of the C2 servers have been taken offline, with the remainder under investigation.

Bernardo Pillot, Assistant Director to the Interpol Cybercrime Directorate, emphasized the collaborative efforts of multiple countries and partners, underscoring the commitment to safeguarding the digital space. By dismantling the infrastructure supporting phishing, banking malware, and ransomware attacks, the operation aims to create a more secure online environment for users worldwide.
Read more »
Technology
3D Secure Interpol Law Enforcement Metaverse Technology

INTERPOL Fights Virtual Crime in the Metaverse

 


Could the future of law enforcement lie in the virtual world? In a pioneering move, INTERPOL established the INTERPOL Metaverse Expert Group in October 2023, aiming to enhance security in the emerging digital world known as the Metaverse. This virtual space, described as a 3D online environment where users interact through avatars, has raised concerns about potential crimes like grooming, radicalization, and cyber-attacks on critical infrastructure.

The INTERPOL Metaverse Expert Group is a collaboration involving INTERPOL member countries, governments, the private sector, academia, and international organizations. Their goal is to make the Metaverse secure by design. While the Metaverse holds promise for transforming various aspects of our lives, it faces challenges such as inadequate infrastructure, privacy concerns, jurisdictional ambiguity, and cybersecurity threats.

One key recommendation from INTERPOL is the integration of artificial intelligence (AI) for predictive policing. However, there are concerns about the legal and ethical implications of relying too heavily on AI. Potential privacy violations and biases, particularly towards marginalized groups, raise red flags. The call for caution emphasises the need for checks and safeguards when using AI-based predictive policing.

Another legal dilemma in the Metaverse revolves around avatars – the digital representations of users. Questions arise about who controls AI-based avatars and their legal status. A recent case in South Korea, where a man was jailed for generating illicit content using AI, highlights the complexity of addressing legal issues tied to avatars.

The report also addresses the challenge of interoperability, emphasising the need for universal protocols to enable seamless interactions across different virtual spaces. Professor Subhajit Basu from the University of Leeds stresses the importance of collaboration between tech companies, governments, and international organizations to establish these protocols while respecting legal jurisdictions.

Basu points out that a significant aspect of the legal framework involves data protection and privacy. As users move their data within the Metaverse, comprehensive legal measures aligned with regulations like Europe's GDPR become crucial.

The INTERPOL report underscores the Metaverse's potential for immersive law enforcement training. However, it highlights complex governance issues and international laws. To bridge these gaps, the report suggests regular policy reviews to adapt to the evolving landscape of the Metaverse.

Recognizing the multi-jurisdictional nature of the Metaverse, the report emphasizes the need for a holistic approach involving collaboration between various stakeholders for an effective response to metacrime. This approach ensures engagement across borders and organizations, essential for navigating the intricate challenges posed by the Metaverse.

INTERPOL’s efforts to address Metaverse-related crimes mark a significant step towards ensuring a secure and responsible digital future. As the Metaverse continues to evolve, the call for collaboration and proactive policies becomes crucial for effective law enforcement and protection of users' rights and privacy.



Read more »
Operation Haechi IV
Comcast data breach Cyber Crime Interpol NFT Scam Operation Haechi IV

Operation Haechi IV: Interpol Arrest 3,500, Seize Assets Worth $300M


In a sweeping operation announced on Tuesday, the international police organization, Interpol has recently detained around 3,500 culprits who were allegedly linked to a cybercrime incident. 

The agency has also seized assets worth $300 million, across 34 countries. The operation, labelled as Haechi IV, furthermore suspended over 80,000 suspicious bank accounts and cautioned governments of the onset of new types of NFT and AI scams.

Stephen Kavanagh, Interpol’s Executive Director of Police Services informs that “The seizure of USD 300 million represents a staggering sum and clearly illustrates the incentive behind today’s explosive growth of transnational organized crime[…]This vast accumulation of unlawful wealth is a serious threat to global security and weakens the economic stability of nations worldwide.”

This year, Interpol witnessed a massive 200% surge in arrests regarding incidents that involved malicious hacks. 

For instance, Comcast suffered a data breach that affected around 56 million accounts, potentially resulting in the compromise of all Xfinity accounts. On Tuesday, ransomware group Rhysida leaked the upcoming Marvel video game from PlayStation, along with the passport information of the game’s developers. Also, last month, 23andMe suffered a loss of biodata of 6.9 million customers in a hack.

In this recent Interpol operation, e-commerce, corporate email compromise, and investment fraud accounted for the majority of the arrests. Haechi IV, however, informed participating nations about two cutting-edge strategies employed by cybercriminals. Interpol discovered that investment fraud, online sexual extortion, and impersonation scams all over the UK were using AI-generated content on multiple occasions. The technology of voice cloning was frequently employed to mimic someone who the victims knew.

Another cyber scam tactic noticed by Interpol that was used in the NFT attacks was very commonly adopted by cybercriminals in South Korea, where victims are promised substantial returns on their investments. However, following the initial investment, these spoof cryptocurrency ventures are frequently dropped. These two con games make use of modern technology and people's shallow knowledge of the subject. "Persistent challenge of cyber-enabled crime, reminding us to stay alert and keep refining our tactics against online fraud," according to Kavanagh, is demonstrated by the 200% increase in arrests.  

Read more »
Malicious actor
African Cyber Surge II BEC Cyber Crime Cyber Surge cybercrime gang Hackers Arrested Interpol Malicious actor

Interpol Operation: 14 Arrested, Allegedly Involved in Scamming Victims of $40 Million


Another Interpol operation detained 14 suspects and identified 20,674 suspected networks spread across 25 African nations that international law enforcement has connected to more than $40 million in losses due to cybercrime.

Operation Africa Cyber Surge II

The police operation, with combined efforts of Interpol, African law enforcement and private-sector security firms, commenced in April and lasted for four months. It was conducted in order to exterminate cyber malpractices like phishing, business email compromise (BEC) and other online scams. 

The international agency informed that the operation was conducted with the help and on-the-ground operational support of several infosec companies like Group-IB, Interpol and Uppsala Security. Their efforts helped in making three arrests in Cameroon related to an online scam involving the fake sale of artwork valued at $850,000.

Group-IB, that previously collaborated with Interpol on operations, gathered and communicated more than 1,000 indicators from its threat intelligence.

"Collaboration and intelligence sharing should be at the heart of cybersecurity operations, and Group-IB stands ready to make a further contribution to this end, in line with our core strategic mission of fighting against cybercrime in all its forms," Group-IB CEO Dmitry Volkov stated on Friday.

Information gathered by Group-IB and other private partners like Trend Micro, Kaspersky, and Coinbase aided in formulating some 150 Interpol analytical reports with data containing ‘intel on cyber threats’ from different countries. 

Details in the report included:

  • 3,786 malicious command and control servers
  • 14,134 victim IPs linked to data stealer cases
  • 1,415 phishing links and domains 
  • 939 scam IPs 
  • More than 400 other malicious URLs, IPs and botnets. 

The first phase of the operation was carried out between July 2022 and November 2022 and resulted in a number of investigations followed by operations against threat actors in the region. 

The most recent arrests come after months of similar cybercrime activities across Africa as international law enforcement works to dismantle cybercrime networks that operate out of various African nations.

Over 100 people were detained last week, according to Interpol, throughout the EU and Africa. Cops also recovered assets worth more than € 2.15 million ($2.4 million) that belonged to the Black Axe organized crime and cybercrime group.

In July 2023, cops in Côte d'Ivoire confirmed to have arrested a suspect, who was apparently a ‘key figure’ of cybercrime group – OPER1ER – responsible for defrauding banks and financial firms across 15 countries.

Interpol in a statement reported that the cybercrime group has defrauded the firms of a sum between $11 million to $30 million, with their targets spreading across Africa, Asia and Latin America.  

Read more »
Subscribe to: Comments (Atom)