INTERPOL Takes Down a Infostealers Operation

By Matthew Rosenquist | Cybersecurity Tomorrow | 17 Jun 2025

Congrats to INTERPOL for taking down a major cyber information-theft infrastructure! Over 20 thousand IPs/domains were shuttered and 41 servers that contained more than 100GB of sensitive data was seized. It is estimated this group, 32 of which were arrested, victimized over two-hundred thousand people by stealing their login credentials, credit card information, and cryptocurrency wallet keys.

Such takedowns are a showcase of public and private cooperation across cybersecurity to undermine the proliferation of organized criminals and the cybercrimes they are committing. In this case, law enforcement from 26 countries participated, including: Brunei, Cambodia, China, Fiji, India, Indonesia, Japan, Kazakhstan, Kiribati, Korea (Rep of), Laos, Malaysia, Maldives, Nauru, Nepal, Papua New Guinea, Philippines, Samoa, Singapore, Solomon Islands, Sri Lanka, Thailand, Timor-Leste, Tonga, Vanuatu, and Vietnam.

Cybersecurity firms also contributed: Kaspersky, Trend Micro, and Group-IB produced Cyber Activity Reports and shared critical intelligence with cyber teams across Asia.

INTERPOL Announcement: https://www.interpol.int/News-and-Events/News/2025/20-000-malicious-IPs-and-domains-taken-down-in-INTERPOL-infostealer-crackdown

Resources

https://www.interpol.int/News-and-Events/News/2025/20-000-malicious-IPs-and-domains-taken-down-in-INTERPOL-infostealer-crackdown

Cryptocurrency cybersecurity hacking cybercrime infosec

How do you rate this article?

Matthew Rosenquist

Cybersecurity Strategist specializing in the evolution of threats, opportunities, and risks in pursuit of optimal security for our digital world.

Cybersecurity Tomorrow

Cybersecurity strategy perspectives for the emerging risks and opportunities of securing our digital world. The insights of today will lead to tomorrow's security, privacy, and safety foundations.