ASEAN Police Unite Against Transnational Scam Networks as Cyber-Criminals Flee to New Havens

The threat posed by organised cybercrime syndicates operating across Southeast Asia has prompted regional law enforcement to forge unprecedented levels of coordination in their battle against fraudulent schemes that drain billions from victims worldwide. Speaking in Phnom Penh this week, ASEAN police agencies acknowledged that online scammers have evolved into highly mobile, borderless criminal enterprises that exploit digital infrastructure and vulnerable communities with alarming efficiency. The shift represents a fundamental challenge to traditional law enforcement models designed around fixed jurisdictions, requiring security forces to abandon outdated tactics in favour of real-time intelligence networks and seamless cross-border operations.

Recognising the gravity of the situation, ASEANAPOL convened a three-day Scam Combatting Operational Training Curriculum Development Workshop in Semarang, Indonesia, between June 15 and 17, bringing together investigators and analysts from across the region to design a unified response framework. The initiative reflects growing acceptance among member states that no single country can effectively address the problem alone, as criminal networks routinely span multiple jurisdictions and exploit the gaps between different legal systems and policing approaches. The collaborative curriculum will focus on intelligence-led investigations, financial tracking and asset recovery, digital forensics, online fraud pattern recognition, and victim support mechanisms—essentially creating a standardised playbook that police forces across Cambodia, Myanmar, Thailand, Vietnam, Laos, and Indonesia can deploy with consistent methodology.

The evolution of scam operations in Southeast Asia has followed an intriguing geographic pattern that reveals how criminal enterprises respond to law enforcement pressure. Cambodia and Myanmar emerged as historical epicentres of the industry, with massive compounds housing thousands of workers orchestrating frauds targeting victims across North America, Europe, and Australia. However, as security forces intensified crackdowns—Cambodia alone has detained approximately 200,000 illegal workers engaged in scamming operations—syndicates began systematically relocating to secondary markets offering better operational security. Laos and Sri Lanka have become attractive destinations, exploiting lenient visa regimes, robust internet infrastructure capable of supporting high-volume transaction processing, expanding international flight connectivity, and critically, regulatory environments where money laundering networks can function with reduced scrutiny. This geographic migration resembles a game of enforcement whack-a-mole, with authorities in one country achieving temporary success only to see operations reconstitute elsewhere.

The scale of financial devastation inflicted by these networks extends far beyond regional boundaries. United States government estimates indicate that Americans alone lost at least US$10 billion in 2024 to scam operations headquartered in Southeast Asia, a figure that excludes losses suffered by victims in other developed economies including Australia, Canada, and Europe. These are not small-time cybercriminals operating from bedroom offices; rather, they represent sophisticated enterprises with hierarchical management structures, specialised departments handling recruitment, financial processing, technical operations, and victim liaison, and sophisticated money laundering mechanisms integrated with legitimate businesses. The concentration of these operations in Southeast Asia is not coincidental but reflects deliberate calculations by criminal syndicates that the region offers optimal conditions for clandestine operations while remaining geographically distant from enforcement agencies in victim nations.

MyanMar's response has been particularly aggressive, with the Home Ministry reporting deportation of approximately 70,000 foreign nationals engaged in criminal activities between 2023 and 2025, coupled with demolition of dozens of physical structures used as operational bases. These enforcement actions signal that ASEAN governments have moved beyond passive acceptance of criminal enterprises and are now willing to impose significant costs on scam operations through property destruction, deportation programmes, and enhanced border security. Similarly, Sri Lankan police have arrested nearly 700 individuals suspected of involvement in cybercrime activities during the current year, indicating that the problem has metastasised beyond traditional Southeast Asian strongholds into South Asian territory. The geographic spread represents a troubling trend where criminal enterprises leapfrog across regions, seeking jurisdictions where capacity constraints, corruption vulnerabilities, or weak digital governance create operational opportunities.

The transnational nature of modern scamming operations necessitates equally transnational law enforcement responses, which explains ASEANAPOL's emphasis on developing shared investigative protocols and intelligence frameworks. Financial investigations and asset tracing emerge as critical focal points because disrupting money flows represents perhaps the most effective lever for dismantling criminal organisations. When scammers successfully extract funds from victims, those proceeds must move through financial systems, inevitably creating transaction trails that sophisticated investigators can follow across borders using cooperative agreements and real-time information sharing. Digital evidence collection capabilities are equally essential, as virtually every fraudulent transaction leaves digital footprints—metadata, communication records, device identifiers—that investigators trained in contemporary forensic techniques can extract and analyse to map criminal networks and identify perpetrators.

Victim identification and protection mechanisms constitute another priority area that reflects evolving understanding of scam operations as human trafficking crimes. Many individuals working within scam centres, particularly those recruited from impoverished communities, are themselves victims of exploitation, coercion, and debt bondage. ASEAN police recognition that combating these networks requires victim-centred approaches suggests a maturation in how regional law enforcement conceptualises the problem beyond purely criminal justice frameworks. Public-private cooperation rounds out the curriculum's focal areas, acknowledging that technology companies, telecommunications providers, and financial institutions possess datasets and technical capabilities that government agencies alone cannot access, necessitating formal cooperation mechanisms between security forces and corporate partners.

The relocation of scam operations to peripheral jurisdictions like Laos and Sri Lanka creates particular challenges for law enforcement coordination because these countries may lack the technical capacity, institutional experience, or financial resources to mount effective investigations independently. This capacity gap creates opportunities for ASEAN technical assistance programmes where more experienced agencies mentor counterparts from newer epicentres, transferring knowledge regarding investigation methodologies, evidence standards, and cross-border coordination procedures. The collaborative approach embedded in ASEANAPOL's curriculum development initiative acknowledges that sustainable solutions require building institutional capability across the entire region rather than concentrating enforcement efforts in a few countries, which merely displaces rather than eliminates the threat.

For Malaysia specifically, the ASEAN coordination framework carries particular significance given the country's position as both a transit point for illicit financial flows and a potential recruitment ground for scam operation workers. Malaysian financial institutions process transactions originating from regional scam networks, while Malaysian citizens occasionally participate in such operations. The strengthened intelligence-sharing arrangements and cross-border investigation protocols developed through ASEANAPOL initiatives directly enhance the Malaysian police's capacity to identify and disrupt financial networks utilising domestic banking channels. Additionally, Malaysia's relatively robust cybercrime investigative capacity positions it as a potential knowledge contributor to regional training programmes, allowing the nation to shape how ASEAN approaches these challenges while simultaneously bolstering its own enforcement capabilities through exposure to peer innovations and best practices from neighbouring jurisdictions.