Events

Ransomware continues to pose one of the most serious and persistent cyber threats to institutions and businesses across the Western Balkans. In response to this growing challenge, the Western Balkans Cyber Capacity Centre (WB3C) is hosting a two-day conference that brings together national authorities, law enforcement agencies, EU institutions, the private sector and international experts to examine the evolving threat landscape and identify practical paths forward.

The discussions will follow the structure of the latest published agenda (available below), covering operational, legal, technical and strategic dimensions of ransomware response.

A diverse regional and European expert community

The conference brings together a wide range of contributors, reflecting the cross-sectoral nature of ransomware resilience:

• National cybersecurity authorities, CSIRTs and police high-tech crime units from Montenegro, Albania, Bosnia and Herzegovina, Serbia, and North Macedonia
• European and international law enforcement institutions, including Europol and France’s Anti-Cybercrime Office (OFAC)
• Judicial representatives and prosecutors from France, Serbia, Montenegro and EUROJUST
• Private-sector leaders in cybersecurity, including technical experts, CISOs, SOC practitioners and incident-response specialists from across the region and the EU
• Academic and research communities specialising in cybercrime, digital forensics and AI-enabled cyber threats

Key themes across the two-day programme

The agenda examines several critical aspects of the ransomware ecosystem:

• Mapping current ransomware tactics and regional threat activity
• Understanding criminal group structures, operational models and international cooperation needs
• Lessons learned from high-profile investigations and successful dismantling of ransomware groups
• Comparative legal frameworks and the challenges of jurisdiction, prosecution and evidence handling
• Real-world case studies from organisations that have managed and recovered from ransomware attacks
• Technical and legal issues surrounding cryptocurrency tracing and seizure
• The emerging role of AI in enhancing both attacker capabilities and defensive measures
• Operational insights from securing major international events, including Paris 2024
• The complexities of negotiating under pressure during active ransomware incidents

Through panels, keynotes, and practitioner-to-practitioner exchanges, the event aims to deepen understanding of how ransomware is evolving, where regional vulnerabilities lie, and what coordinated action is needed to strengthen resilience.

WB3C is committed to strengthening cybersecurity capacity across the Western Balkans by connecting national stakeholders with European expertise and by translating insights into practical improvements for public authorities, critical service operators and the wider digital ecosystem.

Access the latest agenda below.

We just closed a three-day training delivered by two excellent experts from GATEWATCHER, 🛡 Philippe G. and Morgan P. — a global leader in Network Detection and Response (NDR) and Cyber Threat Intelligence (CTI). Their support helped bring some of the most advanced NDR and AI-driven investigation practices directly to our local ecosystem.
Over the three days, participants worked hands-on with Gatewatcher’s technology: understanding how the platform detects threats in real time, how to configure it properly, and how AI is reshaping modern cyber-investigation. The sessions were practical, intense and grounded in real SOC challenges.
Our learners came from both private (Čikom) and public sector (Podgorica) SOC teams including Mladen Bukilic, Bojan Nenadic, Bogdan Scekic, Denis Reković, Andja Budimir, Zvonko Popović, Tamara Bulatovic, Branko Sibalic and Balša Božović.

Their engagement and teamwork made the training genuinely productive, the kind of environment where people learn from each other as much as from the instructors.
This initiative was also made possible thanks to Gilles Schwoerer, Head of WB3C, who brought Gatewatcher and our local companies together to enable this exchange of expertise.

Last week, WB3C participated in the 6th Regional Cybersecurity Conference organized by the Montenegrin NGO Secure, contributing to one of the key discussions of this event: “The impact of AI on cybercrime and law enforcement.” The panel was moderated by our Senior Project Manager, Vanja Madzgalj MBE, and brought together perspectives from the public sector, private sector and the international community supporting capacity building in the region.
A central issue emerged throughout the conversation: as organizations increasingly automate their defences, what happens to the human experts? With AI performing threat analysis, pattern detection and other complex tasks, the role of cybersecurity professionals is not disappearing, it is changing. Their new value lies in oversight, critical judgment, strategic decision-making and the ability to understand and manage AI-enabled systems. This raises another pressing question: while organizations are encouraged to adopt AI, how can they protect their sensitive data from the very risks that AI tools themselves may introduce?

The discussion underscored that AI is transforming both sides of the cyber battlefield. Criminals are using it to scale attacks with unprecedented sophistication, while defenders are leveraging it to detect, analyse and respond to threats faster than ever before. This race for the upper hand demands continuous training and upskilling on all fronts: across government, critical infrastructure, law enforcement and society at large.
Panelists Gilles Schwoerer (WB3C), Bojan Miranović (Police Directorate of Montenegro) and Ivan Stankovic (Čikom) highlighted what this means in practice: how law enforcement handles AI-driven cybercrime, the types of training and support frontline teams need, the institutions most at risk and why cross-border and cross-institution cooperation is becoming indispensable.
For WB3C, these insights reinforce the importance of our mission. As AI accelerates both opportunity and risk, the Western Balkans will need strong skills, trusted partnerships and resilient institutions to stay ahead of emerging threats. WB3C remains committed to supporting that effort across the region.

Today, our colleagues Gilles Schwoerer, head of WB3C and Yannick Casse, cybercrime trainer, attended the graduation ceremony of the 17th generation of cadets at the Police Academy in Danilovgrad. What an emotional event filled with pride! This ceremony marked the formal completion of training for a new cohort who will now enter operational roles within the police service. 

WB3C maintains an active partnership with the Police Academy focused on developing practical digital investigation skills. So far, we have delivered two OSINT training cycles for their cadets, with a third planned for December. These trainings, led by our in-house cybercrime trainers Lt. Y. Casse and Brigadier Chief Cyril C., introduce structured methods for identifying, collecting and preserving open-source information for lawful use in investigations. Strengthening digital competencies is crucial for contemporary policing and we look forward to continuing this work with the upcoming training group.

Congratulations to the graduating cadets!

Last week, on 20-21 November, DCAF and the Western Balkans Cyber Capacity Centre (WB3C) had the pleasure of hosting the workshop "Responsible State Behaviour in Cyberspace: International Norms, Venues and Processes."

It was an engaging two days filled with insightful discussions among professionals coming from foreign ministries in the Western Balkans and Moldova.  

The seminar covered the following topics:
✔️ Operationalizing UN norms from the GGE and OEWG into national strategies.
✔️ Navigating the complex landscape of cyber diplomacy across bilateral and multilateral venues.
✔️ A hands-on exercise on national coordination and international cooperation during a cyber crisis.

These conversations are vital for building a more stable and secure cyberspace, and the collaboration seen in Podgorica is a testament to the shared commitment in the region and beyond. The seminar was also attended by our project manager Maja Miranovic, as part of her professional development. WB3C is committed to empowering women in cyber. 

The seminar ended with closing remarks from Franziska Klopfer and Gilles Schwoerer, stressing that the consistent implementation of these norms is the foundation of international stability in cyberspace.

This week, the Western Balkans Cyber Capacity Centre (WB3C) successfully concluded its first regional Certified Data Protection Officer training in Podgorica, bringing together 12 public servants, two from each of the six Western Balkans economies.

The intensive three-day workshop provided advanced, practical training in data protection governance, moving from theory to application through realistic public-sector simulations. Participants engaged in hands-on exercises, including Data Protection Impact Assessments (DPIAs) and data breach response drills, using tailored scenarios to bridge the gap between legal frameworks and daily operational challenges.

Under the leadership of Gilles Schwoerer, WB3C is committed to advancing the region's cyber resilience and EU alignment through such specialized capacity-building initiatives. This initiative directly supports the region's efforts to align with EU data protection standards and regulations (GDPR), a key step in the digital transformation and EU integration agenda. By fostering a network of certified professionals across the WB6, we are strengthening the foundational capabilities necessary for cross-border data flows and future digital market integration.

We extend our appreciation to the dedicated national coordinators, our expert trainers Stefano Leucci, Stella Manga Chesnay and Blerta Xhako, and all participants for their commitment to advancing data protection standards and regional cooperation.

The first cohort of 7 final-year and master’s students in ICT have just begun the preparatory course of our University Diploma in Cybersecurity, delivered by the Western Balkans Cyber Capacity Centre (WB3C) in partnership with the Université de Technologie de Troyes (UTT), France, under the leadership of professor Reza Elgalai.

This two-week preparation helps students strengthen their foundations so they can follow the full program confidently and succeed in final exams. The second preparatory course will take place in December with another 13 students, after which UTT will select the top 10 candidates to continue with the full diploma course in February 2026.

The program itself is unique in the region. It’s an off-campus study with UTT professors, leading to a 60-ECTS diploma in cybersecurity. With UTT’s recognition of prior learning (120 ECTS from earlier studies), students can earn a parallel EU-recognized professional Bachelor’s degree - a true bridge into the European cyber workforce.

It’s also highly practical. Students learn by doing through lectures, labs, case studies and Capture-the-Flag exercises - building skills that will allow them to step directly into roles such as:
🔹 Security Administrator
🔹 SOC Analyst
🔹 Junior Penetration Tester
🔹 Digital Forensics Technician
🔹 Cybersecurity Auditor

At the same time, WB3C is in discussions with the University of Montenegro exploring how we call collaborate on our cybersecurity initiatives and provide a sustainable academic pathway for the next generation of cyber professionals. The momentum is here. These two programs mark a turning point for Montenegro’s cybersecurity education landscape - building a talent pipeline for the region’s most in-demand cyber roles.

Talent is not an issue - we need more opportunity, visibility and structured support.

Seeing a room full of 70 ambitious young women - many already studying or working in ICT - taking on cybersecurity challenges with confidence and creativity is a reminder of the immense potential that exists right here in the Western Balkans.
Their presentations following the hands-on exercises made one thing clear: talent is not the issue - visibility and opportunity are.

Across the region, women remain one of the most under-utilized resources for innovation, growth and a balanced digital economy.
While global figures show women make up only around 22–24% of the cybersecurity workforce, the gap grows wider at the top - far fewer women reach leadership or C-level roles. Many still face a glass ceiling, subtle bias or the weight of imposter syndrome in male-dominated environments. Supporting young women in developing confidence, assertiveness, and leadership skills is therefore as essential as technical training itself.

Cybersecurity, at its core, is about resilience and adaptability. To build that resilience, our teams must reflect the diversity of the societies they defend. Investing in women in cyber is not a matter of fairness alone - it’s a matter of strategic foresight for the region’s stability and competitiveness.

As these young women step forward, they challenge old assumptions, redefine expertise and show that the future of cybersecurity in the Western Balkans can be both strong and inclusive.

We deeply appreciate our partnership with DCAF and FCDO for enabling WB3C to be part of such an important initiative. 
 

We are proud to announce that our colleague, Vanja Radović, is representing the WB3C in the prestigious CybHER programme, run by the British Council. This initiative is dedicated to empowering, educating and motivating women to become the next generation of cybersecurity leaders.
For Vanja, this is a pivotal opportunity in her early formative professional years to accelerate her professional growth. The programme's curriculum is designed to equip participants with both the vision and the tools to succeed in the tech industry. Throughout the course, the group of ambitious young women will:
💡 Develop authentic leadership skills by understanding their personal values, styles and emotional intelligence.
💡Explore diverse cybersecurity career paths and identify specific opportunities for their own professional growth.
💡Gain proven strategies to overcome gender stereotypes and navigate workplace barriers with confidence.
💡Strengthen networking and collaboration skills to build a powerful support system that fosters resilience and collective growth.
💡Create a personal action plan to immediately apply these leadership insights in their daily work.

We are especially excited that Vanja will be learning from established regional leaders like Larisa Halilovic ♀️, an international leadership expert, and Andreja Mihailovic, PhD, President of Women4Cyber Montenegro. Their guidance will take the programme beyond pure technical knowledge to focus on the essential skills for leadership in a male-dominated field.
At Western Balkans Cyber Capacity Centre (WB3C), we believe that empowering women with core competencies like social intelligence, resilience and strategic networking is just as critical as technical expertise. We are committed to supporting our team members as they grow into the leadership roles our industry needs, and Vanja's participation in CybHER is a perfect example of this commitment in action.