Interpol Arrests 27 Kenyans in Operation Targeting Online Scammers Across Africa, Recovers $4.3 Million

Twenty-seven Kenyans are in the grip of the law following one of the most audacious international cybercrime crackdowns in Africa’s history, a sweeping eight-week operation that ripped through 16 nations and netted 651 suspects while recovering more than $4.3 million in stolen funds.

Operation Red Card 2.0, coordinated by the International Criminal Police Organisation (INTERPOL), ran from December 8, 2025 to January 30, 2026, and has been described by investigators as a landmark moment in the continent’s war against transnational digital crime.

For Kenyans among the thousands of victims whose money simply vanished behind a wall of fabricated investment dashboards and blocked withdrawal requests, the arrests represent long-overdue justice.

The scheme operated with cold, clinical efficiency. Scammers, hiding behind messaging apps and social media personas, lured ordinary people into fake investment platforms that masqueraded as vehicles linked to globally recognised corporations.

Victims were shown gleaming profit dashboards, encouraged to begin with small deposits as modest as $50 (approximately Sh6,453), and promised extraordinary returns. Once their money was in, the exits were sealed.

The Architecture of Deception

The Kenyan arrests form just one shard of a much larger, more sinister mosaic.

Across the 16 participating countries, investigators identified 1,247 confirmed victims, most of them from across the African continent, though tentacles of the fraud reached into other regions of the world.

Authorities seized 2,341 electronic devices and dismantled 1,442 malicious internet addresses, domains and servers that formed the criminal backbone of the operation.

In Nigeria, police tore apart a high-yield investment fraud ring that ran like a corporate enterprise, systematically recruiting young people and equipping them with tools for phishing, identity theft and social engineering.

The ringleader had constructed a residential property that served as the network’s operational headquarters. More than 1,000 fraudulent social media accounts were taken down in the fallout.

Nigeria: Police seized a residential property constructed by the syndicate ringleader to serve as the operational hub.

In a separate but equally brazen Nigerian case, six members of a cybercrime syndicate were arrested for infiltrating the internal systems of a major telecommunications provider using stolen employee login credentials, and then siphoning off vast amounts of airtime and data for illegal resale.

In Cote d’Ivoire, 58 people were arrested and 240 mobile phones, 25 laptops and over 300 SIM cards were seized in a targeted crackdown on mobile loan fraud, an especially vicious form of scam that preys on financially desperate citizens with promises of quick, unsecured credit. Instead of relief, victims found themselves drowning in fees, subjected to abusive debt-collection practices, and stripped of their most sensitive personal and financial data.

Scale of Losses Staggers Investigators

The financial toll linked to the schemes exposed during the operation exceeds $45 million, a figure that investigators say almost certainly understates the true damage.

Cybercrime experts note that the overwhelming majority of victims never report their losses, out of shame, hopelessness, or a lack of confidence in legal institutions.

For every confirmed victim in INTERPOL’s count of 1,247, there are likely dozens more who suffered in silence.

Neal Jetton, INTERPOL’s Director of the Cybercrime Directorate, did not mince his words. “These organised cybercriminal syndicates inflict devastating financial and psychological harm on individuals, businesses and entire communities with their false promises,” he said.

“Operation Red Card highlights the importance of collaboration when combating transnational cybercrime. I encourage all victims of cybercrime to reach out to law enforcement for help.”

Operation Red Card 2.0 was not born in isolation. It follows the original Operation Red Card mounted between November 2024 and February 2025, which netted 306 suspects across seven African countries and seized 1,842 devices.

The sequel’s far greater reach, covering 16 nations and more than twice the arrests, points to a rapidly maturing enforcement framework on a continent that has historically struggled to coordinate cross-border criminal investigations.

A Continent’s Cyber Reckoning

INTERPOL supported the operation through intelligence sharing, real-time information exchange and capacity-building training in digital forensics, working alongside private sector partners including Cybercrime Atlas, Team Cymru, Trend Micro, TRM Labs and Uppsala Security.

The operation was conducted under the African Joint Operation against Cybercrime (AFJOC), an initiative bankrolled by the United Kingdom’s Foreign, Commonwealth and Development Office, with additional support from the Global Action on Cybercrime Enhanced (GLACY-e) project, a European Union and Council of Europe joint initiative.

The full list of participating countries spans the breadth of Sub-Saharan Africa: Angola, Benin, Cameroon, Chad, Cote d’Ivoire, Gabon, Gambia, Ghana, Kenya, Namibia, Nigeria, Rwanda, Senegal, Uganda, Zambia and Zimbabwe.

That 16 sovereign states moved in coordinated lockstep over eight weeks marks, for many analysts, a watershed moment in continental law enforcement cooperation.

For Kenya’s Directorate of Criminal Investigations, the 27 arrests add to growing pressure to demonstrate that the country is no safe harbour for cybercriminals who increasingly target both local and international victims.

Kenya has faced scrutiny in recent years over the pace at which cybercrime cases move through its courts, and the arrests under Operation Red Card 2.0 will be watched closely as a measure of whether prosecutorial muscle matches enforcement ambition.

Investigations are ongoing across multiple participating countries. INTERPOL has urged anyone who believes they may have fallen victim to any of these schemes to report the matter to their national law enforcement authority.