Interpol's 'Synergia' Op Nabs Dozens of Cybercriminals, Zaps Global C2s

10 months ago 41
News Banner

Looking for an Interim or Fractional CTO to support your business?

Read more

The world with Africa in the centre and binary code over the land mass

Source: Bruno Haver via Alamy Stock Photo

An operation to combat the surge of phishing, banking malware, and ransomware attacks worldwide saw command-and-control (C2) servers taken down across Africa and the Middle East.

The Interpol-led Synergia operation involved 60 law enforcement agencies, including 17 from across the Middle East and Africa (MEA) region. The largest number of takedowns in Africa were in South Sudan and Zimbabwe, and they resulted in four arrests. Kuwait law enforcement meanwhile worked closely with ISPs to "identify victims, conduct field investigations, and offer technical guidance to mitigate impacts," according to Interpol.

Interpol worked with local law enforcement and outside cybersecurity firms on the effort (including Group-IB, Kaspersky, ShadowServer, Team Cymru, and TrendMicro). The operation ran from last September through November, and resulted in the arrests of 31 individuals globally, and the identification of an additional 70 suspects.

Beyond the MEA region, Interpol reported other global results as follows:

  • Most of the C2 servers taken down were in Europe, where 26 people were arrested;

  • Hong Kong and Singapore Police took down 153 and 86 servers, respectively;

  • Bolivia mobilized a range of public authorities to identify malware and resulting vulnerabilities.

The Synergia operation also identified malicious infrastructure and resources in more than 50 countries, distributed across more than 200 Web hosting providers around the world. So far, 70% of the command-and-control (C2) servers have been taken offline, and the rest are under investigation.

"The results of this operation, achieved through the collective efforts of multiple countries and partners, show our unwavering commitment to safeguarding the digital space," said Bernardo Pillot, assistant director to Interpol Cybercrime Directorate, in a statement. "By dismantling the infrastructure behind phishing, banking malware, and ransomware attacks, we are one step closer to protecting our digital ecosystems and a safer, more secure online experience for all."

Read Entire Article