A global INTERPOL operation targeting phishing, malware, and ransomware attacks has identified some 1,300 suspicious IP addresses or URLs as part of their efforts to combat transnational cybercrime. Operation Synergia, which took place from September to November 2023, was initiated in response to the growing threat of cybercrime and the need for coordinated action against new cyber threats.
Over 60 law enforcement agencies from more than 50 INTERPOL member countries participated in Operation Synergia, with officers carrying out house searches, seizing servers, and electronic devices. The operation has been successful in taking down 70% of the command-and-control (C2) servers that were identified, with the remaining servers currently under investigation.
During the operation, authorities detained 31 individuals and identified an additional 70 suspects. Most of the C2 servers that were taken down were located in Europe, where 26 arrests were made. Hong Kong and Singapore Police were successful in taking down 153 and 86 servers, respectively. South Sudan and Zimbabwe reported the most takedowns in Africa, with four suspects arrested in each country. Bolivia mobilized various public authorities to identify malware and vulnerabilities, while Kuwait worked closely with Internet Service Providers to identify victims and offer technical guidance.
Operation Synergia highlighted the importance of international cooperation in combating cybercrime. By working together, law enforcement agencies, national authorities, and private sector partners can effectively share best practices and proactively combat cyber threats. Throughout the operation, INTERPOL and its Gateway Partners Group-IB, Kaspersky, TrendMicro, Shadowserver, and Ad hoc partner Team Cymru provided analysis and intelligence support.
Assistant Director to INTERPOL Cybercrime Directorate, Bernardo Pillot, emphasized the significance of the operation’s results in dismantling the infrastructure used for phishing, banking malware, and ransomware attacks. Pillot stated, “The results of this operation, achieved through the collective efforts of multiple countries and partners, show our unwavering commitment to safeguarding the digital space.”
Participating countries in Operation Synergia included Albania, Algeria, Australia, Bangladesh, Belarus, Belgium, Benin, Bolivia, Bosnia and Herzegovina, Brazil, Cameroon, Canada, China, Cyprus, Czech Republic, Dominican Republic, Ecuador, Estonia, Eswatini, France, Georgia, Greece, Guyana, India, Ireland, Israel, Kuwait, Latvia, Lebanon, Lichtenstein, Maldives, Mauritius, Moldova, Nepal, Nicaragua, Nigeria, Palestine, Poland, Qatar, Russia, San Marino, Singapore, South Korea, South Sudan, Spain, Sri Lanka, Switzerland, Tanzania, Thailand, Tonga, Tunisia, Türkiye, Uganda, United Arab Emirates, Uruguay, and Zimbabwe.
Overall, Operation Synergia serves as a testament to the effectiveness of international collaboration in combating cyber threats and protecting digital ecosystems for a safer online experience for all.