Council of Europe and European Commission organise regional cyber training for East and South-East European countries
March 2022 by Marc Jacob
At a time when strengthening capacities on cybercrime and cybersecurity is more important than ever, the Council of Europe Cybercrime Programme Office (C-PROC) and the European Commission will organise, from 7 to 11 March in Athens (Greece), a regional cyber exercise involving co-operation between the cybersecurity community (mainly computer security incident response teams - CIRTs) and law enforcement agencies on handling and investigating a malware attack orchestrated by a criminal group.
The training is organised in the framework of the “CyberEast: Action on Cybercrime for Cyber Resilience in the Eastern Partnership Region” project and the “iPROCEEDS-2: Targeting Crime Proceeds on the Internet and Securing Electronic Evidence in South-East Europe and Turkey” project, in partnership with the Cybersecurity East project, funded by the European Union.
CyberEast and iPROCEEDS-2 projects build on the success of the previous joint EU and Council of Europe projects (implemented since 2010) and aim at adopting legislative and policy frameworks compliant with the Budapest Convention on Cybercrime and related instruments, reinforcing the capacities of judicial and law enforcement authorities and interagency co-operation, and building trust in criminal justice and increasing effective international co-operation on cybercrime and electronic evidence, including between service providers and law enforcement authorities.
The Regional Cybercrime Exercise will bring together 50 participants, mostly from four of the six countries of the Eastern Partnership region (Armenia, Azerbaijan, Georgia and the Republic of Moldova) and from South-East Europe: Albania, Bosnia and Herzegovina, Kosovo*, Montenegro, North Macedonia, Serbia and Turkey.
The exercise will require the participants to detect and identify cyber security incidents and/or potential cybercrime, and then follow the money and criminal proceeds. It will also apply OSINT, malware analysis and digital forensics skills to identify potential perpetrators and collect potential intelligence and evidence. Lastly, it will coordinate activities and recover data necessary for cyber investigations and prevention of further incidents.
The trainers include experts on cybercrime and cybersecurity from the UK, Australia, the Netherlands and Romania.
In addition, a regional conference, organised with the contribution of the European Union Agency for Cybersecurity (ENISA), will focus on principles and procedures of co-operation between law enforcement and CIRTs, to be adopted by participating countries.
* All reference to Kosovo, whether to the territory, institutions or population, in this text shall be understood in full compliance with United Nations Security Council Resolution 1244 and without prejudice to the status of Kosovo.