Technology

Interpol-led cybercrime crackdown results in 574 arrests in 19 African nations, decrypts six ransomware variants — Operation Sentinel disrupts rings that caused $21 million in losses, recovers $3 million

Source

Tom's Hardware

Published

Dec 23, 2025

TL;DR

AI Generated

Interpol's Operation Sentinel in Africa led to 574 arrests across 19 nations, decrypting six ransomware variants and recovering $3 million. The crackdown targeted cybercrimes like BEC, digital extortion, and ransomware, with losses totaling $21 million. Notable cases include a $7.9 million BEC attempt in Senegal and a $120,000 ransomware attack in Ghana. Interpol highlighted the rise of cybercrime in Africa, with past operations like Red Card and Serengeti yielding successful results against cyber-enabled fraud.

Read Full Article

How a USB-connected speaker can infect a PC without ever being touched

A researcher discovered a vulnerability in the Sound Blaster Katana V2X speaker that allows a Bluetooth device to connect to a PC via USB without authentication or pairing. The Creative Transport Protocol (CTP) used by the speaker enables commands like changing LED colors and equalizer settings, as well as uploading new firmware without security measures. This flaw could potentially lead to remote code execution on the targeted device, highlighting a security risk in USB-connected speakers.

Ars Technica•

1 week ago

A hacker group is poisoning open source code at an unprecedented scale

A hacker group known as TeamPCP has been conducting a significant number of software supply chain attacks, corrupting hundreds of open source tools to insert their malicious code. The group recently breached GitHub by installing a tainted extension for VSCode, compromising around 4,000 of GitHub's code repositories. TeamPCP has been actively carrying out these attacks, with cybersecurity firm Socket reporting over 20 waves of attacks in the past few months, affecting more than 500 software pieces. This ongoing spree of attacks has raised concerns about the security and trustworthiness of the software ecosystem.

Ars Technica•

3 weeks ago

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

Microsoft is investigating a compromise of the mistralai PyPI package, where attackers injected malicious code that automatically executed on import, downloaded a secondary payload, and launched malware on Linux systems. The compromised package contained code that silently downloaded a file and executed it in the background, potentially stealing credentials and executing destructive commands. This incident is part of the broader "Mini Shai-Hulud" software supply-chain campaign affecting npm and AI developer ecosystems. Additionally, security firm Aikido warned of compromised TanStack JavaScript packages and Mistral npm SDK packages in separate attacks, urging developers to rotate credentials if affected. The incidents highlight the increasing targeting of developer infrastructure, emphasizing the importance of securing high-value credentials in modern development environments.

Tom's Hardware•

4 weeks ago

Chaos erupts as cyberattack disrupts learning platform Canvas amid finals

A cyberattack disrupted the Canvas online learning platform during final exams, prompting chaos at schools and colleges in the US. Instructure, Canvas's parent company, temporarily took the platform offline after detecting unauthorized activity in its network. The threat actor responsible for the breach had also been involved in a previous data breach. While user data like names and email addresses were accessed, sensitive information like passwords and financial details were reportedly not compromised. The ransomware group ShinyHunters claimed responsibility for the breach, affecting millions of individuals associated with thousands of schools. Other learning platforms, like PowerSchool, have also fallen victim to cyberattacks in the past.

Ars Technica•

1 month ago

How a USB-connected speaker can infect a PC without ever being touched

Ars Technica•

1 week ago

A hacker group is poisoning open source code at an unprecedented scale

Ars Technica•

3 weeks ago

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

Tom's Hardware•

4 weeks ago

Chaos erupts as cyberattack disrupts learning platform Canvas amid finals

Ars Technica•

1 month ago

Interpol-led cybercrime crackdown results in 574 arrests in 19 African nations, decrypts six ransomware variants — Operation Sentinel disrupts rings that caused $21 million in losses, recovers $3 million

TL;DR

Similar Articles

How a USB-connected speaker can infect a PC without ever being touched

A hacker group is poisoning open source code at an unprecedented scale

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

Chaos erupts as cyberattack disrupts learning platform Canvas amid finals

We use cookies

Interpol-led cybercrime crackdown results in 574 arrests in 19 African nations, decrypts six ransomware variants — Operation Sentinel disrupts rings that caused $21 million in losses, recovers $3 million

TL;DR

Similar Articles

How a USB-connected speaker can infect a PC without ever being touched

A hacker group is poisoning open source code at an unprecedented scale

Compromised Mistral AI and TanStack packages may have exposed GitHub, cloud and CI/CD credentials in 'mini Shai Hulud' malware infection — supply-chain campaign spreads across npm and AI developer ecosystems like wildfire

Chaos erupts as cyberattack disrupts learning platform Canvas amid finals