• Home
• Technology

 Kaspersky has shared its globally recognized cyber threat intelligence data to support INTERPOL’s coordinated "Operation Ramz," as part of ongoing efforts to combat cybercrime across the Middle East and North Africa (MENA) region.

The operation, which involved 13 countries, resulted in the arrest of 201 individuals and the identification of 382 suspects linked to regional cybercrimes, marking one of the most prominent regional operations aimed at prosecuting digital criminal networks and dismantling their infrastructure.

Conducted from October 2025 to February 2026, Operation Ramz focused on neutralizing threats from phishing, malware, and cyber fraud, which had claimed approximately 4,000 victims. The collaboration between law enforcement agencies and private sector partners aimed to disrupt malicious infrastructure, identify the perpetrators, and apprehend them to mitigate future potential losses.

Kaspersky Supplies Law Enforcement with C&C Server Data In support of the operation, experts from Kaspersky’s Threat Research Center provided partner law enforcement agencies with technical data on cyber threats tied to the region and the infrastructure utilized to manage or deploy malware, including actionable intelligence on Command and Control (C&C) servers.

Operation Ramz stands as a significant milestone, being the first cybercrime-combating operation of this scale coordinated by INTERPOL within the MENA region. During the initiative, approximately 8,000 critical intelligence data points were exchanged among participating nations, facilitating the launch and advancement of multiple investigations.

Neal Jetton, Director of INTERPOL’s Cybercrime Directorate, stated that cybercriminals exploit a borderless digital space, noting that Operation Ramz demonstrates the effectiveness of international cooperation in confronting this type of crime. He added that INTERPOL remains committed to working with member countries and private sector partners to dismantle malicious infrastructure, disrupt criminal networks, and bring perpetrators to justice.

Yuliya Shlychkova, Vice President of Global Public Affairs at Kaspersky, remarked that Operation Ramz highlights the pivotal role of partnerships between law enforcement agencies and private sector experts in dismantling advanced cybercrime networks on a massive scale. She added that equipping competent authorities with high-quality, timely intelligence on cyber threats empowers them to respond rapidly, protect users, and foster a safer digital environment for all.

Prominent Results in Qatar, Jordan, Oman, Algeria, and Morocco Key outcomes of Operation Ramz across several MENA countries included:

Qatar: Compromised devices were identified and immediately secured, with owners notified to take necessary risk-mitigation measures.

Jordan: Security authorities pinpointed a device used in financial fraud involving a fake trading platform that shut down after receiving funds from users. The subsequent raid led to the detainment of 15 individuals and the arrest of two suspects believed to be leading the criminal activity.

Oman: A server containing confidential data was discovered inside a private residential location and was immediately disabled to prevent any potential data exploitation.

Algeria: Authorities dismantled a website offering "Phishing-as-a-Service". After identifying the responsible server, authorities seized a computer server, a PC, a mobile phone, and hard drives containing phishing software and scripts, leading to the arrest of one suspect.

Morocco: The operation resulted in the seizure of computers, mobile phones, and storage media containing financial data and phishing software. Three individuals were referred for judicial prosecution, while investigations into others remain ongoing.

13 Participating Countries The nations participating in Operation Ramz included: Algeria, Bahrain, Egypt, Iraq, Jordan, Lebanon, Libya, Morocco, Oman, Palestine, Qatar, Tunisia, and the United Arab Emirates.

Kaspersky reaffirmed its continued support for a collaborative approach in confronting cybercrime by providing law enforcement and partners with data on advanced tactics and strategies related to cyber threats. The Kaspersky Threat Research Center provides in-depth visibility into more than 300 threat actors and monitors over 500 malicious cyber campaigns, enhancing the capacity of relevant authorities to understand the evolution of cyberattacks and respond effectively.