Events

Empowering women for CyberTech is one of the strategic objectives of the Western Balkans Cyber Capacity Centre (WB3C). By joining forces with our partners Urad Vlade Republike Slovenije za informacijsko varnost, CEP - Centre for European Perspective, Women4Cyber Slovenia and Women4Cyber Montenegro we worked with women from different industries and administrations across the region on understanding the political, economic, societal and technical context in which cyber threats occur and empowering them to champion, lead and develop new talent for the cyber industry. 

Over the two days, from 29 September to 1 October, 18 women cyber experts from the public and private sectors from the Western Balkans, gathered at WB3C for a workshop to learn, share knowledge and discuss gender based crimes that occur in the digital space and how to stay safe. We covered a number of topics, from understanding the context which gives rise to cybercrime, to raising awareness, developing and empowering new talent for cyber tech and leveraging the existing expertise and leadership we have among women in the region, to champion women's greater participation and leadership in this industry.  

By working in partnership with leading organizations specializing in women4cyber, we reinforce the importance of regional and international cooperation in tackiling cybercrime and building our collective response to growing cyber threats in the Western Balkans region and globally.

The Western Balkans Cyber Capacity Centre is hosting a two-day technical training programme on 19-20 September, delivered by our partners e-Governance Academy focused on equipping CSIRT/SOC staff with the skills to effectively manage threat intelligence information. The training features esteemed instructors from CERT-EE / Information System Authority of Estonia: Tonu Tammer, the previous Director of CERT-EE, and Heiki Pikker, Senior Information Security Expert.

In our interconnected world, the security landscape is constantly evolving, presenting new challenges for organizations. To protect our operations and assets, we need to proactively identify and mitigate threats before they become problematic. This training programme teaches how to gather, analyze, and address these threats efficiently.

Key topics include:

Managing intelligence workflows

Recognizing malware signatures

Utilizing open-source intelligence (OSINT)

Evaluating intelligence credibility

Optimizing MISP (Malware Information Sharing Platform) usage

Establishing effective information management practices

By the end of the training, participants will gain valuable insights into various threat intelligence tools and automation possibilities, as well as techniques for sharing information with domestic and international allies. This knowledge will enhance regional cooperation in intelligence sharing and help establish standard procedures for collective security strategies.

This week, the Western Balkans Cyber Capacity Centre (WB3C) is conducting a five-day training for police investigators from the Western Balkans region. This training is part of a comprehensive two-week program that begins with a focus on theoretical foundations and is followed by practical exercises based on both simulated and real-world cybercrime cases. Throughout the year, this training is also provided to local prosecutors and judges, with participants brought together during the second week to collaborate on cybercrime cases. This integrated approach fosters cooperation among various law enforcement branches, enhancing their effectiveness in combating cybercrime.

As law enforcement professionals in the Western Balkans face growing challenges from rapidly evolving cyber threats, this training aims to equip participants with the necessary skills and knowledge. The theory part of the course covers the following areas:

1. Typology of Crime (ToC): Understanding the classification and types of crimes related to cyberspace.

2. Digital Evidence Collection and Cooperation: Methods for collecting digital evidence and working with relevant stakeholders.

3. Open Source Intelligence (OSINT): Techniques for gathering publicly accessible information for investigations.

4. Introduction to Crypto Assets: Understanding the basics of cryptocurrency, including its role in cybercrime.

Upon completion of the course, participants will be able to:

1. Identify criminal offenses related to cybercrime and cyber-enabled crime.

2. Legally gather evidence in cyber-related criminal cases.

3. Localize and identify items exploitable for digital forensic operations.

4. Collect open-source intelligence and use geolocation tools.

5. Utilize channels of cooperation with Internet Service Providers (ISPs) and social networks.

6. Understand the concept and functioning of crypto assets, the transaction process, tracking methods, and subsequent proceedings.

As technology advances, the online exploitation of children has become one of the most pressing challenges confronting law enforcement worldwide.
From 10-13 September 2024, WB3C will host a workshop for law enforcement professionals and cybersecurity experts from SEPCA member countries, focusing on cryptocurrency and online child sexual abuse and exploitation.

The workshop is organized by WB3C in partnership with the Southeast Europe Police Chiefs Association (SEPCA), Council of Europe (COE), OSCE, Austrian Cybercrime Competence Centre (C4), and the Ministry of Interior of Serbia.
WB3C experts, together with our partners, will lead an intense 3-day program addressing three critical areas:

1.     Cryptocurrency Investigations:
This session explores the use of cryptocurrencies in criminal activities, particularly involving children. Participants will receive practical training on blockchain tracing, asset seizure, and using specialized tools to track illicit transactions, including best practices for evaluating wallets and understanding derivation paths.

2.     Child Sexual Abuse and Exploitation Online:
Investigators will receive training on disrupting illegal networks involving exploitation of children, focusing on international cooperation. The session covers psychological support for investigators who are dealing with this highly distressing issue, and discusses undercover operations, digital platforms used for child abuse, and methods for collecting electronic evidence.

3.     Cross-Border Collaboration:
The workshop will enhance collaboration among law enforcement agencies from the region and international partners. The goal is to share knowledge, foster coordination, and provide updates on efforts to combat cybercrime globally.

This event marks a significant step in our shared mission to protect children from exploitation and hold those who use emerging technologies for illicit purposes accountable. Together, we can strengthen tools and techniques to safeguard vulnerable communities and dismantle criminal networks.

The Western Balkans Cyber Capacity Centre (WB3C), in collaboration with the Dutch Nationaal Cyber Security Centrum (NCSC-NL) of the Ministry of Justice and Security, conducted a specialized training from 3 to 6 September at WB3C’s new premises in the Science and Technology Park of Montenegro.

The training series was designed to enhance the cybersecurity skills of key government officials from across the Western Balkans, focusing on protecting Critical Infrastructures (CI) and Critical Information Infrastructures (CII). Divided into three segments, the programme covered:

• Operational Technology:
  Participants learned to secure Operational Technology crucial to sectors such as manufacturing, energy, and utilities. Practical sessions explored strategies for defending against cyber threats targeting OT environments.
• Cyber Resilient Ecosystems:
  This segment focused on building resilient ecosystems capable of withstanding and recovering from cyber incidents. The training involved hands-on exercises to develop regional and sector-specific strategies.
• Critical Information Infrastructure Protection:
  The final segment provided insights into protecting essential digital assets, with practical exercises to strengthen strategies for safeguarding critical information infrastructures.

The training brought together government officials responsible for digital affairs, national crisis management, and critical infrastructure, as well as researchers in cybersecurity. Led jointly by experts from NCSC-NL and WB3C, this programme reflects WB3C's ongoing commitment to promoting cooperation both internationally and regionally on matters of cybersecurity. 

Western Balkans Cyber Capacity Centre participated in the World Economic Forum (WEF) community members meeting in Geneva on 2-3 July, titled „Bridging the Cyber Skills Gap“, which brought together private and public sector leaders from around the world.

Our team from the Western Balkans Cyber Capacity Centre (WB3C), represented by Tadej Rupel, Digital and Cyber Ambassador at MFEA Slovenia, and Vanja Madzgalj, Senior Project Manager at WB3C, contributed to discussions on developing actionable strategies to create, attract, recruit and retain cybersecurity talent. The meeting explored the ways of putting

Strategic Cybersecurity Talent Framework (https://lnkd.in/eZ9mFTyt) into motion, identifying barriers and setting future workstreams.

On Day 1, dynamic discussions among the group were prompted by key presentations on the Future Of Jobs Report 2023, highlighting the impact of technological advancements and green transition on the labor market, and ILO Perspectives on Employment and Skills, addressing challenges in skills development for cybersecurity roles.

On Day 2, discussions focused on the impact of AI on cybersecurity jobs and strategies for leveraging public-private partnerships (PPP) to build a sustainable talent pipeline. WB3C's team contributions included sharing our methodology for creating relevant training programs, leveraging partnerships, the role of diplomacy in fighting cybercrime, and best practices in cybersecurity education.

The WEF meeting was a significant step towards addressing the cybersecurity skills gap, and we look forward to implementing these strategies within the Western Balkans region and working in partnership with our global allies.

As cybercrime continues to evolve and pose a growing threat, it is crucial that local-level law enforcement be equipped with the necessary skills and knowledge to effectively combat these digital threats. For this purpose, Western Balkans Cyber Capacity Centre (WB3C) developed a specialized training program for prosecutors and investigators in the Western Balkans administrations with a view to building capacity at the local level. This week, 60 participants from Montenegro and Bosnia and Herzegovina (Federation of BiH and Republika Srpska) attended a second round of intensive 4 day training, following a week of theoretical training .

This comprehensive training, led by experts from the WB3C and regional institutional experts, will equip 30 prosecutors and 30 investigators with the latest tools and techniques to  tackle a range of cybercrime challenges. From darkweb, #cryptocurrency-based crimes and ransomware attacks to open-source intelligence gathering (OSINT) and mutual legal assistance (MLA), participants will engage in hands-on exercises to enhance their investigative capabilities.

This initiative represents a significant step forward in strengthening the capacity of local authorities to combat the growing threat of cybercrime. Through this collaborative effort, Montenegro and Bosnia and Herzegovina will be better equipped to protect their citizens and businesses from the devastating impacts of digital attacks.

About Diagonal:Developed by the FrenchGendarmerie and originally designed for small and medium-sized enterprises, health institutes and municipalities, Diagonal is a pre-diagnostic tool that assesses cyber maturity and identifies actions to enhance protection against cyber threats. On 12 June, this tool was donated to public administrations across the Western Balkans as part of the WB3C's support in buillding cyber resilience of the region.

Why Diagonal?

With the rise in cyberattacks, it is crucial for public administrations to be well-prepared. Diagonal helps in understanding vulnerabilities and developing an effective security strategy. It facilitates the identification of priority projects to secure against online threats and supports strategic decision-making.

Key Objectives of Diagonal:

• Assess cyber maturity: Understand the current level of cybersecurity within the administration.
• Identify improvements: Suggest both human and technical areas for enhancement
• Collect data: Gather statistical information on prevalent cyber threats.

Main features:

• Cyber risk assessment and strategy development.
• Monitoring and awareness programs.
• Evaluation of service provider dependencies.
• GDPR compliance checks.
• Technical infrastructure security.
• Incident response and business continuity planning.

This initiative is part of a series of actions by WB3C to support Western Balkans administrations, significantly contributing to building regional cyber resilience. Diagonal is not a replacement for a comprehensive audit but serves as an essential first step in fortifying our defenses against cyber threats.

Major David Toulotte of the Commandement du ministère de l’Intérieur dans le cyberespace (COMCYBER-MI), one of the co-creators of the tool, and Colonel Laurent Baille of the French Gendarmerie - ComCyber-MI Strategic International Cooperation, together with Cedric Grousset, Director of Studies of WB3C, presented the software to our beneficiaries and held workshops on its use.

On June 11-12 June, Western Balkans Cyber Capacity Centre (WB3C) hosted its first regional conference, a landmark event drawing over 100 professionals from the region's public administrations, international bodies, and local stakeholders. The conference, which featured four thematic panels, offered a platform to address the dynamic and pressing challenges in cybersecurity and cyber diplomacy.

Panel Overview:

Panel 1: Cyber Resilience and Critical Infrastructure

Chaired by Lt. Col. Yannick Ragonneau, the first panel set the tone for the conference, focusing on cyber resilience and the protection of critical infrastructure. Representatives from both government and private sectors, including experts from the French Ministry of Interiorand ArcelorMittal, discussed collaborative approaches and best practices for defending essential services and assets.

Panel 2: Evolution of Cybercrime Phenomena and International Criminal Assistance

Colonel Laurent Baille moderated a critical discussion on evolving cyber threats and the necessity of robust international cooperation. The panel highlighted effective strategies for international criminal assistance and the importance of a multi-stakeholder approach to create a safer digital environment.

Panel 3: Artificial Intelligence and Ethics in Cybersecurity

Cyber Ambassador Vladimir Vucinic led the third panel, which delved into the impact of AI on global security, responsible usage, and the intertwined challenges of rapid technological advancement and privacy concerns. The dialogue underscored the importance of good data governance and strategic AI adoption in law enforcement and policymaking.

Panel 4: Navigating the Cyber Landscape Through Cyber Diplomacy

The final panel, guided by Tadej Rupel, Slovenia's Cyber and Digital Ambassador, explored the critical aspects of cyber diplomacy. Discussions focused on the EU's role, private sector engagement, and civil society’s contributions to fostering international cyber policy dialogues. This panel highlighted the essential role of entities like ENISA in capacity building and the increasing reliance on AI to support diplomatic efforts, especially for resource-constrained environments.

On Day 2, we focused on the application of the pre-diagnostic tool Diagonal, which was

donated to the Western Balkans administrations. The tool is designed to help administrations:

• Assess cyber maturity: Understand the current level of cybersecurity within the administration.
• Identify improvements: Suggest both human and technical areas for enhancement.
• Collect data: Gather statistical information on prevalent cyber threats.

On 12 June, WB3C instructors provided a workshop to the representatives of the WB6 on the effective use of the tool and its features.

Summary:

The WB3C Regional Conference mapped out the landscape of cybersecurity challenges and opportunities in the Western Balkans. By bringing together a diverse group of stakeholders, the conference both provided valuable insights and proposed solutions to certain challenges, and it reinforced the necessity for continued dialogue and cooperation in the cyber domain underpinned by full commitment of governments towards creating a future proof cyber environment.