Getting it right: EU multi-stakeholder dialogue on the UN cybercrime treaty negotiation
13:00 to 14:00 CEST.
The EU Cyber Direct - EU Cyber Diplomacy Initiative together with the European Commission and the European External Action Service organise the online meeting ‘Getting it right: EU multi-stakeholder dialogue on the UN cybercrime treaty negotiation’.
The United Nations negotiation of a new cybercrime treaty convenes for its second session (30 May – 10 June 2022) with the demanding task of discussing general provisions as well as criminalisation, procedural measures and law enforcement clauses. As this is the first time the UN Member States are negotiating a binding legal framework on cybercrime, the stakes are high on the scope and impact this work will have in regulating online activity and shaping international criminal justice cooperation in the digital era.
A building block to this process is the meaningful participation of diverse voices from the multi-stakeholder community and the incorporation of their input in the discussion. The European Union and its Member States have developed their contribution and, building on previous consultations, would invite an exchange of views with civil society organisations, the private sector and academia as the negotiation continues.
This virtual event will provide a venue to share insights on the EU position and stimulate a debate with non-governmental stakeholders to consult their perspectives about specific provisions and aspects of the negotiation.
31st UN Commission on Crime Prevention and Criminal Justice (CCPCJ31)
From 16 to 20 May, civil society organizations and UN member states will gather in Vienna and online for the annual session of the CCPCJ.
Amid a busy season of meetings for the Vienna-based crime-focused diplomatic community, at the CCPCJ member states will consider four draft resolutions. Given the thematic focus on cybercrime in the plenary agenda and the ongoing negotiations on a new cybercrime treaty at the UN, the UK’s resolution on ‘effective national legal frameworks to protect children from sexual exploitation and abuse’ will be particularly topical and shaped by the context of the treaty negotiation.
- On the 16th of May at 12:15 CEST, one of the sessions will focus on "The importance of including external perspectives in the negotiations on a UN #cybercrime treaty" with speakers Ian Tennant, H.E. Ms. Faouzia Boumaiza Mebraki, H.E. Troy Lulashnyk, Louise Marie Hurel, Joyce Hakmeh, Summer Walker and Eric do Val Lacerda Sogocio.
International cooperation on cybercrime prevention, investigation and prosecution using emerging technologies: challenges and opportunities
This webinar aims to highlight avenues for international collaboration to effectively combat cybercrime committed using emerging technologies and to harness the potential of these technologies to assist the work of criminal justice authorities, and provide a platform for exchange of best practices and resources.
Carried out the GLACY+ Project in cooperation with APWG.EU, the activity aims to:
- discuss the possible challenges and opportunities regarding international cooperation to prevent, investigate and prosecute cybercrime using emerging technologies;
- present and exchange best practices and resources on international private-public cooperation on cybercrime prevention and investigation using new technologies.
At the end of the webinar, participants are expected to have:
- increased their knowledge of specific methods of international collaboration to prevent, investigate and prosecute cybercrime using new technologies;
- acquired information about best practices, real-life cases, opportunities and challenges in international cooperation on cybercrime using new technologies;
- become aware of the types of support available through global capacity-building initiatives.
This webinar will be particularly useful for policymakers responsible for cybercrime policies and legislation; representatives in charge of cooperation with LEAs; criminal justice practitioners; and representatives of the private sector.
UN Ad-Hoc Committee on Cybercrime – First Session
In accordance with General Assembly resolution 75/282 and with General Assembly decision 76/552, the Ad Hoc Committee to Elaborate a Comprehensive International Convention on Countering the Use of Information and Communications Technologies for Criminal Purposes, established by the General Assembly in its resolution 74/247, will hold its first session at United Nations Headquarters (UNHQ) in New York, United States of America, from 28 February to 11 March 2022.
What Future for International Cybercrime Cooperation ? – LIVE STREAMED EVENT
18:00-19:00 UTC / 13:00-14:00 EST
A new United Nation (UN) process will officially begin on February 28, 2022 – the negotiation of the new cybercrime convention, as established by UN General Assembly resolution 74/247. This negotiation is unique in the UN context, as it represents the first-time states are negotiating a binding framework for cyberspace. As such it has the potential to dramatically change – for either better or worse – how the internet operates. It is likely to touch on the role of states in regulating the online world, seek to enhance cross border cooperation, and challenge how human rights are implemented online.
On Wednesday, 2 March 2021 at 13:00 EST / 18:00 UTC, the Let’sTalkCyber Initiative will be hosting an online panel discussion jointly organised by EU Cyber Direct and Chatham House titled: “What Future for International Cybercrime Cooperation?”. In this panel, we hope to hear from those charged with overseeing the negotiation to understand the process and identify opportunities for non-governmental stakeholders – industry, civil society, and academia, to provide input and help governments understand the impact of specific provisions. We also hope to hear more about the issues at stake from those who have been following adoption of similar frameworks at the national level. The main purpose of any law against cybercrime should be to protect targets and victims of cybercrime, offer effective remedies and an adequate set of human rights safeguards. Can this treaty provide that, and if so, how?
How to prevent cyber threats and participate in cyber peace
Cybercrime is on the rise and the cyber threat landscape is changing rapidly. What solutions should we adopt? How can we achieve peace in cyberspace?
Subject matter experts will address these questions during this roundtable event:
- Vincent Subilia, Director General,CCIG – Geneva Chamber of Commerce, Industry and Services
- Nathalie Mombelli, Enterprise Security Manager, Microsoft
- Stéphane Duguin, Chief Executive Officer, CyberPeace Institute
- Delphine van Solinge, Corporate security Officer, ICRC – International Committee of the Red Cross
- Jeremy Richard, Deputy Security Manager – IT Security Specialist – compliance, risks & management systems, Groupe Mutuel
Register by 10 January (limited capacity): https://agenda.ccig.ch/agenda/2022/01/Comment-se-premunir-contre-les-cybermenaces-et-participer-a-la-cyberpaix
FIRST & AfricaCERT Virtual Symposium for the African and Arab Regions
This virtual symposium will be co-hosted by AfricaCERT and TunCERT.
Participants are expected to be comprised of global FIRST Member Teams and CSIRTs from the African and Arab regions. FIRST also expects to attract network operators, anti-abuse teams, and other security professionals from the African and Arab regions.
Program Agenda At-A-Glance
• December 7 | 11:00-18:15 UTC - Plenary Topics - Plenary Panel Discussions: Regional and International Initiatives, Frameworks and Related Standards, Open-source Tools and CSIRT Success Stories, Open Data (OSINT) and Threat Intelligence Sharing Platforms and Tools, Observed Malicious Cyber Criminality During COVID in the African and Arab Regions.
• December 8 – 11:00-15:00 UTC - Technical and Management Training Tracks - Training Opportunities: Open-source Tools for CSIRTs, MITRE ATT&CK Fundamentals, CSIRT Maturity Modeling, Protective DNS – Why It Matters and How to Deploy It On-prem. Designing and Running Cyber-exercises for CSIRTs.
• December 9 – 11:00-15:00 UTC - Technical and Management Training Tracks - Training Opportunities: Incident Response and Classification Workshop, MISP Fundamentals, National Cyber Crisis Management.
The event will be presented in English with French translation available during the plenary sessions on December 7.
Protecting the healthcare sector from cyber harm
15:00 – 17:00 CEST
If the past year has taught us anything, it has to be that we need to protect the healthcare sector from cyberattacks. Between January and August 2021 alone, the CyberPeace Institute recorded 77 disruptive attacks on healthcare organizations, of which the majority resulted in operational disruptions to the sector. These have a direct human impact as people are unable to access healthcare services, a basic human right.
The Czech Republic, the CyberPeace Institute, and Microsoft are taking action. Together, they kick-started the ‘Protecting the Healthcare Sector from Cyber Harm’ project which, over a series of thematic workshops, brings together healthcare, cybersecurity, and regulatory experts to identify good practices needed to protect this vital infrastructure. This is a multistakeholder issue that requires the attention of government, industry and civil society actors in order to come up with truly global solutions.
This event will explore challenges pertaining to, inter alia, accountability, state responsibility, due diligence, international human rights law, International Humanitarian Law, sovereignty and non-intervention as well as the use of force. It will explore existing initiatives and outcomes, including innovative recent ones such as the Oxford Process, with the aim of distilling good practices and recommendations, which we will endeavour to compile in a compendium to be published at the end of the workshop series.
Strengthening inclusive cybercrime policymaking: Europe regional consultation
12:00-3:30 PM (UTC)
Join Chatham House and the EU Cyber Direct project for this virtual regional consultation, intended for civil society, the private sector and other non-state stakeholders from the wider European region to share their perspectives on developing a new international convention on cybercrime, pursuant to United Nations General Assembly resolution 74/247.
As the United Nations prepares to negotiate a new convention on cybercrime starting in January 2022, it is vital that non-state stakeholders (such as civil society, the private sector, academia, and the technical community) have the opportunity to meaningfully share their opinions and concerns.
To this end, Chatham House’s International Security Programme is facilitating a series of virtual regional consultations to engage with non-state stakeholders from different regions during the negotiations on cybercrime, providing a platform for sharing knowledge, information and positions on different issues.
- Joyce Hakmeh, Senior Research Fellow, International Security Programme; Co-Editor, Journal of Cyber Policy.
- Patryk Pawlak, Brussels Executive Officer, European Institute for Security Studies.
Cybersecurity Crossroads: The Intersection of Information, Technology, and People
October 27, 2021 11:00 am - 3:00 pm (ET)
Join the National Cyber Security Alliance and Nasdaq for the 2021 Cybersecurity Summit, “Cybersecurity Crossroads: The Intersection of Information, Technology, and People.” The challenges faced by the cybersecurity community today are hitting mainstream headlines. However, new approaches to information sharing, securing technologies, and human-centric cyber training can empower organizations and professionals to enable a safer, more secure world.
In honor of Cybersecurity Awareness Month, experts will delve into the current cybersecurity landscape, and discuss how looking at cybersecurity as an intersection of information, technology and people can secure its future.
Sessions will include:
- Flipping the Switch: Prioritizing People in Cybersecurity
- Global Information Sharing to Disarm Cyber Criminals
- The Cybersecurity Solution: Educating Future Leaders
- Fireside Chat: The Supply Chain Ripple Effect
Responsible state behaviour in cyberspace at the United Nations: How can the multistakeholder community ensure that existing agreements become a reality?
3 November 2021 at 11:00 EDT /15:00 UTC / 17:00 CEST
In an effort to build on the December 2020 and February 2021 Let’s Talk Cyber multistakeholder discussions and to mark the launch of their new multistakeholder engagement website, currently under construction, the LetsTalkCyber Initative, is organizing a virtual session titled: “Responsible state behaviour in cyberspace at the United Nations: How can the multistakeholder community ensure that existing agreements become a reality?“
In the first half of 2021, two United Nations (UN) processes successfully concluded with the adoption of two consensus reports by the GGE 2019/2021 and the OEWG 2019/2021, re-affirming the framework for responsible behaviour of states in cyberspace. But where do we go from here? How can we ensure these agreements are respected and implemented, and how can the multistakeholder community play an active role?
The Ransomware Pandemic: Is There a Light at the End of the Tunnel? Cyber Resilience Seminar Series.
Oct 13, 2021 09:00 AM in Eastern Time (US and Canada)
GFCE Member World Bank, is hosting on Wednesday, October 13th “The Ransomware Pandemic” webinar which covers the increasing threat posed by ransomware attacks, and will focus on several themes: governmental response, economic impact, incident management and capacity building.
The webinar will feature a keynote address by Chris Painter, President of the GFCE Foundation Board, followed by a panel discussion featuring leading global cyber resilience experts Dr. Maya Bundt, Mr. Menny Barzilai, David Satola and Dr. Ts. Aswami Ariffin.
Virtual Roundtable: “Evolving internationally coordinated strategy to detect ransomware attacks as an international diplomatic and enforcement priority”
In September 2020, The Azure Forum brought together experts from across the globe to examine the nature of malicious cyber-enabled state activity in the healthcare sector during the global pandemic and the policy responses open to states to deal with this behaviour. A number of high-profile ransomware incidents have since occurred globally, such as the Colonial Pipeline and Health Service Executive of Ireland attacks, and use of ransomware targeting Microsoft exchange servers. We are thus revisiting these themes and would like to invite you to join a high-level roundtable discussion on “Evolving internationally coordinated strategy to deter ransomware attacks as an international diplomatic and enforcement priority”.
Thursday 30 September 2021 at 13:00-14:30 (Irish Standard Time).
Cyber 9/12 Strategy Challenge for South Africa
Atlantic Council and the Cybersecurity Capacity Centre for Southern Africa (C3SA) at the University of Cape Town, are partnering to host the inaugural Cyber 9/12 Strategy Challenge in South Africa. The Cyber 9/12 Challenge for South Africa is designed to offer students enrolled in tertiary education programmes across a wide range of academic disciplines in South African universities, a better understanding of the policy challenges associated with cybercrime and/or cyber operations. Part interactive learning experience and part competitive scenario exercise, the Cyber 9/12 Strategy Challenge for South Africa gives students interested in understanding and learning how to tackle and respond to cybercrime and/or to cyber operations, from a technical, policy, and legal angles an opportunity to interact with expert international, regional, and national mentors, judges, and cyber professionals while developing valuable skills in policy analysis and presentation.
Student teams will be challenged to respond to an evolving scenario involving a major cyber-attack and analyse the threat it poses to state, military, and private sector interests. Teams will be judged based on the quality of their policy responses, their decision-making processes, and their oral presentation to a panel of judges. Along the way, teams will work with coaches at their home institution to develop their policy skills and feedback from expert panels of judges will ensure that all participants have an opportunity to improve their skills, as well as networking opportunities during the competition.
CENS Webinar “Making Ransomware Pay: Strategies for Taking Back Control”
CENS Webinar "Making Ransomware Pay: Strategies for Taking Back Control"
23 September 2021, 20:00h-21:30h
The recent Kaseya ransomware attacks brought together a formidable combination – a zero-day vulnerability, a supply chain hack and a ransomware encryption programme – that together crippled the delivery of critical and other essential services as well as affected the operations of up to an estimated 1,500 businesses. However, apart from efforts by governments and industry to patch vulnerabilities post-incident and mitigate effects, there appears to be still a relative paucity of effective measures to proactively address the increasingly complex ransomware threats that have arisen recently. Aside from the debate of whether to pay or not to pay, there have also been increasingly strident calls for governments and industry to combine a strong defence while developing proactive policy, legislative and operational levers to address and mitigate the ransomware threat. At the same time, the intersection of government and business interests is an opportunity to enhance collaboration to better address and mitigate the effects of such attacks in future, including in information sharing, investigation, tracing of ransomware payments and where appropriate, the tracking down of the perpetrators.
This webinar will seek to discuss policy, legislative and operational options and avenues for public-private partnership that are available to – and which can be developed by – governments and industry to proactively deal with increasingly sophisticated ransomware threats.
Panellists include: Tom Millar (CISA), David Koh (CSA Singapore), Rachel Falk (CSCRC) and Stéphane Duguin (CyberPeace Institute).