Report an incident

Get 24/7 incident response assistance from our global team

Talk to sales

Just fill out the form, and our representative will contact you soon.

Join the Cybercrime Fighters Club

Please review the following rules before submitting your application:

1. Our main objective is to foster a community of like-minded individuals dedicated to combatting cybercrime and who have never engaged in Blackhat activities.

2. All applications must include research or a research draft. You can find content criteria in the blog. Please provide a link to your research or research draft using the form below.

Group-IB contributes to INTERPOL-led “Operation Synergia II” to take down phishing, ransomware, and information stealers alongside 95 countries

Media Center Press Releases
November 6, 2024 · 4 min to read
Operation Synergia II
Operation Synergia II
Phishing
Ransomware

Group-IB, a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime, announced today that it has contributed to “Operation Synergia II”, an INTERPOL-led global operation aimed at combating the surge of phishing, ransomware and information stealer attacks. 95 countries participated in the operation that took down 22,000 malicious servers. In total, 41 individuals were arrested by a multinational coalition of law enforcement agencies, with 65 other suspects still under investigation. As part of the operation, Group-IB’s analysts identified over 2,500 IP addresses linked to 5,000 phishing websites, and more than 1,300 IP addresses tied to various malware activities spanning 84 countries.

Members of the Hong Kong Police Force raided the premises of the suspects and took more than 1,037 servers linked to malicious services offline. Image credit: INTERPOL and the Hong Kong Police Force

Members of the Hong Kong Police Force raided the premises of the suspects and took more than 1,037 servers linked to malicious services offline. Image credit: INTERPOL and the Hong Kong Police Force

Members of the Hong Kong Police Force raided the premises of the suspects and took more than 1,037 servers linked to malicious services offline. Image credit: INTERPOL and the Hong Kong Police Force

Conducted from 1 April until 31 August 2024, Operation Synergia II was a joint effort from INTERPOL, private sector partners, and law enforcement agencies from 95 INTERPOL member countries, aimed at disrupting phishing, ransomware, and information stealer cybercriminals and syndicates. Leveraging Group-IB’s expertise in tracking illegal cyber activities to identify thousands of malicious servers, INTERPOL shared this information with participating law enforcement agencies, who conducted preliminary investigations leading to a series of coordinated actions, including house searches, disruption of malicious cyber activities, and lawful seizures of servers and electronic devices.

Local law enforcement and INTERPOL coordination meeting in Africa for Operation Synergia II. Image credit: INTERPOL

Local law enforcement and INTERPOL coordination meeting in Africa for Operation Synergia II. Image credit: INTERPOL

Of the approximately 30,000 suspicious IP addresses identified under the operation, more than 22,000 were taken down and 59 servers were seized. Additionally, 43 electronic devices, including laptops, mobile phones and hard disks were seized.

The following countries participated in the operation:

  • Hong Kong (China) – Police supported the operation by taking offline more than 1,037 servers linked to malicious services.
  • Mongolia – Investigations included 21 house searches, the seizure of a server and the identification of 93 individuals with links to illegal cyber activities.
  • Macau (China) – Police took 291 servers offline.
  • Madagascar – Authorities identified 11 individuals with links to malicious servers and seized 11 electronic devices for further investigation.
  • Estonia – Police seized more than 80GB of server data and authorities are now working with INTERPOL to conduct further analysis of data linked to phishing and banking malware.

“The global nature of cybercrime requires a global response which is evident by the support member countries provided to Operation Synergia II. Together, we’ve not only dismantled malicious infrastructure, but also prevented hundreds of thousands of potential victims from falling prey to cybercrime. INTERPOL is proud to bring together a diverse team of member countries to fight this ever-evolving threat and make our world a safer place.”

Interpol Neal Jetton
Neal Jetton

INTERPOL’s Director of the Cybercrime Directorate

“We are proud to have contributed to Operation Synergia II by supporting INTERPOL and law enforcement agencies from member countries in the disruption of malicious infrastructure and preventing cybercrimes. As an INTERPOL Gateway Partner, we firmly believe that closer collaboration between the public and private sector will not only tackle cybercrime in all its guises more effectively, but also safeguard the information and data of our clients and that of the society globally.”

Dmitry Volkov
Dmitry Volkov

CEO of Group-IB

Operation Synergia II is the second edition of Operation Synergia that ran from September to November 2023, in which Group-IB’s Threat Intelligence and High-Tech Crime Investigation teams identified more than 500 IP addresses hosting phishing sites and more than 1,900 IP addresses used by ransomware, Trojan and other malware operators. The identified malicious resources were found to be hosted in more than 50 countries, including Australia, Canada, Hong Kong, Singapore, and others. The malicious infrastructure used by the threat actors was distributed across 200+ web hosting providers around the world.

About Group-IB

Founded in 2003 and headquartered in Singapore, Group-IB is a leading creator of cybersecurity technologies to investigate, prevent, and fight digital crime. Combating cybercrime is in the company’s DNA, shaping its technological capabilities to defend businesses, citizens, and support law enforcement operations.

Group-IB’s Digital Crime Resistance Centers (DCRCs) are located in the Middle East, Europe, Central Asia, and Asia-Pacific to help critically analyze and promptly mitigate regional and country-specific threats. These mission-critical units help Group-IB strengthen its contribution to global cybercrime prevention and continually expand its threat-hunting capabilities.

Group-IB’s decentralized and autonomous operational structure helps it offer tailored, comprehensive support services with a high level of expertise. We map and mitigate adversaries’ tactics in each region, delivering customized cybersecurity solutions tailored to risk profiles and requirements of various industries, including retail, healthcare, gambling, financial services, manufacturing, crypto, and more.

The company’s global security leaders work in synergy with some of the industry’s most advanced technologies to offer detection and response capabilities that eliminate cyber disruptions agilely.

Group-IB’s Unified Risk Platform (URP) underpins its conviction to build a secure and trusted cyber environment by utilizing intelligence-driven technology and agile expertise that completely detects and defends against all nuances of digital crime. The platform proactively protects organizations’ critical infrastructure from sophisticated attacks while continuously analyzing potentially dangerous behavior all over their network.

The comprehensive suite includes the world’s most trusted Threat Intelligence, The most complete Fraud Protection, AI-powered Digital Risk Protection, Multi-layered protection with Managed Extended Detection and Response (XDR), All-infrastructure Business Email Protection, and External Attack Surface Management.

Furthermore, Group-IB’s full-cycle incident response and investigation capabilities have consistently elevated industry standards. This includes the 77,000+ hours of cybersecurity incident response completed by our sector-leading DFIR Laboratory, more than 1,400 successful investigations completed by the High-Tech Crime Investigations Department, and round-the-clock efforts of CERT-GIB.

Time and again, its solutions and services have been revered by leading advisory and analyst agencies such as Aite Novarica, Gartner®, Forrester, Frost & Sullivan, KuppingerCole Analysts AG, and more.

Being an active partner in global investigations, Group-IB collaborates with international law enforcement organizations such as INTERPOL, EUROPOL and AFRIPOL to create a safer cyberspace. Group-IB is also a member of the Europol European Cybercrime Centre’s (EC3) Advisory Group on Internet Security, which was created to foster closer cooperation between Europol and its leading non-law enforcement partners.

Read next
Press release CFIP
December 2, 2025
Group-IB launches Cyber Fraud Intelligence Platform – a first-of-its-kind, GDPR compliant solution for real-time fraud intelligence sharing
November 27, 2025
Ukuk and Group-IB Strengthen Cooperation to Enhance the National Cyber Defense of the Kyrgyz Republic
Top Women in Security ASEAN Awards 2025
November 13, 2025
Group-IB’s High-Tech Crime Investigations team triumphs at Top Women in Security ASEAN Awards 2025
October 21, 2025
Group-IB launches Asia-Pacific’s first Cyber Fusion Center in Singapore
October 9, 2025
Group-IB Intelligence Powers Spanish Guardia Civil Operation to Dismantle the “GXC Team” Cybercrime Syndicate
September 30, 2025
Group-IB and Cyber Samurai join forces to enhance cyber resilience in the DACH region
Go to all Press Releases →