A large-scale cybercrime crackdown, codenamed “Operation Ramz,” across the Middle East and North Africa (MENA) has resulted in 201 arrests and the identification of 382 additional suspects linked to phishing, malware, and online fraud schemes.
Conducted between October 2025 and February 2026, the operation involved law enforcement agencies from 13 countries aiming to dismantle malicious cyber infrastructure, disrupt phishing campaigns, and prevent future financial losses across the region.
Authorities identified 3,867 victims and seized 53 servers during the coordinated effort. In Algeria, authorities dismantled a phishing-as-a-service (PhaaS) platform after tracing and confiscating a server used to host phishing software and scripts. Police officers also seized computers, mobile phones, and hard drives linked to the operation, leading to the arrest of one suspect.
In Morocco, police confiscated electronic devices containing banking information and phishing tools used in cyber fraud campaigns. Meanwhile, Qatari investigators identified compromised devices being used to spread malware. Authorities secured the infected systems and alerted the owners, who were themselves victims of cyberattacks.
Jordanian police uncovered a sophisticated financial fraud network operating through a fake online trading platform. During a raid, police discovered that 15 individuals carrying out the scams were victims of human trafficking. Recruited from Asian countries under false employment promises, the workers reportedly had their passports taken and were coerced into participating in the fraud scheme. Two suspected ringleaders were arrested.
In Oman, authorities shut down a vulnerable server located in a private residence after discovering it contained sensitive data and had been compromised by malware due to critical security flaws.