Interpol has announced the arrest of more than 1,000 individuals suspected of cybercrimes in a coordinated operation across 19 African countries.

Conducted between September and October, Operation Serengeti targeted various forms of cybercriminal activity, including ransomware, business email compromise (BEC), digital extortion, online scams, and phishing schemes.

The operation, led jointly by Interpol and Afripol (the African Union’s policing organization), uncovered a vast network of cybercrime, identifying over 35,000 victims and linking cases to nearly $193 million in financial losses globally.

Targeting Africa’s Top Cyber Threats

Running from September 2 to October 31, Operation Serengeti specifically tackled threats highlighted in the 2024 Africa Cyber Threat Assessment Report.

It involved intelligence-sharing and strategic planning, producing 65 Cyber Analytical Reports that guided enforcement actions.

Participating nations included Algeria, Angola, Benin, Cameroon, Côte d’Ivoire, the Democratic Republic of the Congo, Gabon, Ghana, Kenya, Mauritius, Mozambique, Nigeria, Rwanda, Senegal, South Africa, Tanzania, Tunisia, Zambia, and Zimbabwe.

Private Sector Collaboration

Private sector partners such as internet service providers and cybersecurity firms played a key role by sharing intelligence, conducting analyses, and assisting in disrupting criminal activities.

These efforts helped secure critical infrastructure and patch vulnerabilities within participating countries.

Notable Arrests and Cases

Kenya: Authorities unravelled a credit card fraud scheme causing losses of $8.6 million.

Fraudulent scripts were used to bypass banking security protocols, with funds redirected via SWIFT to companies in the UAE, Nigeria, and China before reaching digital asset institutions.

Nearly 20 suspects have been arrested.

Senegal: Eight individuals, including five Chinese nationals, were arrested for orchestrating a $6 million online Ponzi scheme affecting 1,811 victims.  Evidence seized included 900 SIM cards, $11,000 in cash, phones, laptops, and copies of victims’ ID cards.

Nigeria: A man accused of running online investment scams defrauded victims of over $300,000 by falsely promising cryptocurrency returns.

Cameroon: Authorities dismantled a multi-level marketing scam that trafficked victims from seven countries. Victims, initially promised jobs or training, were later coerced into recruiting others. The group is estimated to have earned at least $150,000 in fees.

Angola: Investigators shut down an international syndicate operating a virtual casino in Luanda, targeting Brazilian and Nigerian gamblers. The scam defrauded hundreds, with over 150 arrests made and 200 computers and 100 mobile phones seized.

Global Support and Insights

The operation was supported by funding from the UK’s Foreign, Commonwealth and Development Office, the German Federal Foreign Office, and the Council of Europe.

Operational partners included major cybersecurity firms such as Cybercrime Atlas, Fortinet, Kaspersky, and Trend Micro.

Valdecy Urquiza, Interpol’s Secretary General, emphasized the operation's impact:

“Operation Serengeti demonstrates the power of global collaboration.

These arrests will prevent countless future victims from financial and personal losses. However, this is just the beginning, and we remain committed to targeting these criminal networks worldwide.”

Ambassador Jalel Chelba, Afripol’s Executive Director, highlighted emerging cybercrime challenges:

“Through Serengeti, we’ve deepened insights into cybercrime trends and enhanced support for African law enforcement.

Moving forward, we will focus on tackling advanced threats such as AI-driven malware and sophisticated attack techniques.”

Operation Serengeti underscores the growing scale of cybercrime in Africa and the importance of collective action to combat these threats