In an era where Africa’s digital economy is expanding rapidly, a surge of cybercrime is rising alongside it, testing the continent’s resilience.
From online scams to ransomware attacks and cryptocurrency fraud schemes, cybercriminals exploit gaps in law enforcement, weak digital infrastructure, and limited international cooperation.
But this year, African authorities, backed by INTERPOL and international partners, struck back hard.
Operation Serengeti 2.0, a sweeping law enforcement effort, arrested more than 1,200 cybercriminals in 18 African countries and the United Kingdom between June and August.
The operation recovered about USD 97.4 million, took down more than 11,000 malicious online networks, and revealed just how widespread cyber fraud is still trapping victims worldwide.
The crackdown underscored the global reach of cybercrime and the urgent need for cross-border cooperation in an age when scams travel faster than borders can contain.
As Africa strikes digital gold, cybercrime strikes back
Africa is witnessing notable growth in financial technology, e-commerce, and digital services. Mobile money has transformed banking access, and cryptocurrencies are increasingly part of everyday conversations among young Africans eager for new investment opportunities.
But this same digital opportunities rush has attracted cybercriminals who exploit the hype around crypto and the gaps in regulation.
From fake online investment schemes to elaborate business email compromise (BEC) networks, criminals take advantage of eager investors and vulnerable institutions.
INTERPOL’s Africa Cyberthreat Assessment Report 2025 highlights this reality. The report found that cybercrime accounts for more than 30 per cent of all reported crimes in parts of Western and Eastern Africa. Online scams, ransomware, BEC, and digital sextortion remain among the most common threats.
Ambassador Jalel Chelba, Acting Executive Director of AFRIPOL, said, “Cybersecurity is not merely a technical issue; it has become a fundamental pillar of stability, peace, and sustainable development in Africa. It directly concerns the digital sovereignty of states, the resilience of our institutions, citizen trust and the proper functioning of our economies.”
Inside operation Serengeti 2.0
Operation Serengeti 2.0 was not just another raid. It was a continent-wide, intelligence-driven offensive. Investigators from across Africa worked closely with INTERPOL’s global networks and private sector partners like Fortinet, Group-IB, Kaspersky, TRM Labs, and The Shadowserver Foundation.
Intelligence was shared in advance, arming local investigators with details of suspicious IP addresses, domains, and command-and-control servers.
Ahead of the operation, officers participated in workshops on cryptocurrency investigations, ransomware analysis, and open-source intelligence techniques, sharpening the skills needed to combat highly technical cyber threats.
The results speak volumes:
In Angola, authorities dismantled 25 illegal cryptocurrency mining centres run by 60 Chinese nationals. These miners unlawfully validated blockchain transactions while illegally tapping electricity through 45 illicit power stations.
Assets worth more than USD 37 million were seized, and the government pledged to redirect the confiscated power to vulnerable communities.
In Zambia, investigators unravelled a massive online investment scam. Some 65,000 victims were lured into crypto investment schemes and lost an estimated USD 300 million.
Scammers used flashy online ads to promise high returns and convinced victims to download multiple apps to participate.
Authorities arrested 15 suspects, froze key bank accounts, and are now chasing down international collaborators.
Also in Zambia, police and immigration authorities uncovered a scam centre tied to a human trafficking network. The raid led to the seizure of 372 forged passports spanning seven countries.
In Côte d’Ivoire, officers dismantled a transnational inheritance scam with roots in Germany. The fraudster behind it was arrested, and assets, including jewellery, electronics, cars, cash, and documents, were seized.
Victims worldwide had been duped into paying fees to claim non-existent inheritances, causing about USD 1.6 million in losses.
For Valdecy Urquiza, Secretary General of INTERPOL, these successes show the power of collective action:
“Each INTERPOL-coordinated operation builds on the last, deepening cooperation, increasing information sharing and developing investigative skills across member countries. With more contributions and shared expertise, the results keep growing in scale and impact. This global network is stronger than ever, delivering real outcomes and safeguarding victims.”
INTERPOL warns Africa of scammers’ evolving tactics
INTERPOL’s 2025 Cyberthreat Assessment warns that Africa’s cybercrime landscape constantly changes. Traditional scams like fake inheritances are still profitable, but criminals are evolving, adopting more advanced techniques powered by artificial intelligence (AI).
One particularly concerning rise has been in digital sextortion, with 60 per cent of African member states reporting a surge in cases.
Scammers either coerce authentic images from victims or create AI-generated explicit content to blackmail them.
Meanwhile, ransomware remains a formidable challenge. In 2024, South Africa and Egypt recorded the highest ransomware detections, 17,849 and 12,281, respectively, followed by Nigeria and Kenya.
Many of these attacks targeted critical infrastructure, including breaches of Kenya’s Urban Roads Authority and Nigeria’s National Bureau of Statistics.
BEC fraud, too, continues to drain millions. Syndicates like Black Axe in West Africa have turned BEC into a transnational business empire, targeting corporations worldwide by infiltrating email systems and diverting payments.
African law enforcement struggles with limited resources
Despite major wins like Operation Serengeti, African law enforcement agencies remain hampered by systemic gaps.
75 per cent of countries admit their legal frameworks and prosecution capacity are inadequate.
95 per cent say they lack resources, training, or specialised tools to enforce cybercrime laws.
Only 30 per cent of countries have an incident reporting system, and just 19 per cent have a cyber threat intelligence database.
While cybercrime is inherently global, 86 per cent of African member states report weak international cooperation.
Formal processes are slow, operational networks are limited, and access to foreign-hosted data is often restricted.
INTERPOL’s Neal Jetton, Cybercrime Director, captured the urgency:
“This fourth edition of the INTERPOL African Cyberthreat Assessment provides a vital snapshot of the current situation… It paints a clear picture of a threat landscape in flux, with emerging dangers like AI-driven fraud that demand urgent attention. No single agency or country can face these challenges alone.”
Building a stronger digital shield
The fight against cybercrime in Africa is far from over, but there are signs of progress. INTERPOL’s African Joint Operation against Cybercrime (AFJOC), supported by the UK’s Foreign, Commonwealth and Development Office, has become a cornerstone of the continent’s resilience strategy.
With a budget of GBP 2.68 million (2024–2025), AFJOC aims to:
- Expand intelligence-sharing and digital forensics capacity.
- Harmonise national laws with international cybersecurity standards.
- Launch public awareness campaigns to prevent victimisation.
- Strengthen operational networks across African police forces.
Past operations under AFJOC, such as Africa Cyber Surge II and Operation Red Card, have demonstrated the impact of sustained international collaboration, leading to over 1,000 arrests and the takedown of hundreds of thousands of malicious infrastructures.
Why this matters
Africa’s digital future depends on trust. The continent’s widely celebrated digital transformation risks losing momentum if investors, entrepreneurs, and ordinary citizens cannot rely on secure systems.
Cybercrime is no longer a side issue; it directly threatens economic growth, political stability, and citizen confidence.
Tackling it requires not only coordinated crackdowns like Operation Serengeti but also long-term investment in law enforcement capacity, regional cooperation, and cybersecurity education.
As INTERPOL, AFRIPOL, and African governments strengthen ties, the message to cybercriminals becomes clearer: the continent is no longer an easy hunting ground.