An unprecedented crackdown on cybercrime across Africa has resulted in the arrest of 1,006 suspects and the dismantling of 134,089 malicious infrastructures. Dubbed Operation Serengeti, the joint effort by INTERPOL and AFRIPOL spanned over two months, targeting some of the continent’s most notorious cybercriminals.
The operation uncovered more than 35,000 victims and linked criminal activities to financial losses totaling nearly $193 million globally. This initiative targeted threats identified in the 2024 Africa Cyber Threat Assessment Report, including ransomware, business email compromise (BEC), digital extortion, and online scams.
Intelligence-Driven Action
INTERPOL’s intelligence-sharing capabilities proved pivotal. Participating countries contributed data that enabled the production of 65 Cyber Analytical Reports, ensuring the operation focused on high-value targets. The reports guided actions against major actors in cybercrime, resulting in significant disruptions to their activities.
Private sector entities such as Internet Service Providers (ISPs) played a crucial role. These partners shared intelligence, provided analysis, and patched vulnerabilities, safeguarding critical infrastructure across the region. Their 24/7 support amplified the operation’s impact.
INTERPOL Secretary General Valdecy Urquiza noted the operation’s success stating, “These arrests alone will save countless potential future victims from real personal and financial pain. We know this is just the tip of the iceberg, which is why we will continue targeting these criminal groups worldwide.”
Emerging Threats and Regional Insights
AFRIPOL’s Executive Director Ambassador Jalel Chelba emphasized the operation’s role in enhancing law enforcement capabilities. “Through Serengeti, AFRIPOL has significantly enhanced support for African Union Member States. Our focus now includes emerging threats like AI-driven malware and advanced attack techniques,” he said.
Operation Serengeti Case Studies
Several national cases exemplified the operation’s effectiveness:
- Kenya: Authorities cracked a complex online credit card fraud scheme that siphoned $8.6 million. Fraudulent scripts altered banking system security protocols, redistributing stolen funds through the SWIFT system to companies in the UAE, Nigeria, and China. Investigators arrested nearly two dozen individuals.
- Senegal: A Ponzi scheme orchestrated by eight suspects, including five Chinese nationals, defrauded 1,811 victims of $6 million. Authorities seized 900 SIM cards, $11,000 in cash, and various electronic devices during a raid.
- Nigeria: Law enforcement apprehended a man accused of running cryptocurrency investment scams, profiting over $300,000 by luring victims with false promises of lucrative returns.
- Cameroon: A trafficking ring operating a multi-level marketing scam was dismantled. Victims were lured to Cameroon under false pretenses and forced into the scheme, generating at least $150,000 in illegal profits.
- Angola: Investigators shut down an international syndicate running a virtual casino targeting Brazilian and Nigerian gamblers. The operation led to 150 arrests and the seizure of 200 computers and over 100 mobile phones.
Operation Serengeti demonstrates the value of international partnerships. The UK’s Foreign, Commonwealth & Development Office, Germany’s Federal Foreign Office, and the Council of Europe funded the operation. Leading cybersecurity firms, including Fortinet, Group-IB, and Kaspersky, contributed expertise and resources.
The operation spanned 19 African nations, including Algeria, Ghana, South Africa, and Zimbabwe, showcasing a continent-wide commitment to combating cybercrime.
Also read: One of the Largest Cybercriminal Operations in West Africa Dismantled
Participating countries leveraged their collective resources to disrupt criminal activities and protect victims from further harm.
Operation Serengeti is a future model for government and private sector led collaborative cybersecurity initiatives worldwide. It sets a benchmark of sorts. With criminals increasingly exploiting emerging technologies like artificial intelligence, such operations will remain crucial to safeguarding global digital ecosystems.
