highlights - europol · 2016-03-07 · 2 dear all, t hank you for making the third edition of the...

15
HIGHLIGHTS

Upload: others

Post on 19-Jan-2020

2 views

Category:

Documents


0 download

TRANSCRIPT

Page 1: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

HIGHLIGHTS

Page 2: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

2

Dear all,

Thank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We

have had the privilege to host over 350 members of law enforcement, private sector, academia and international organisations from all around the world.

This bulletin aims to summarize some of the moments and people you met at Europol’s Headquartes during the event. We hope you enjoy it

Best regards,The Joint Europol-Interpol Conference Team

Page 3: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

3

The Internet Organised Crime Threat Assessment was released during the first day of the conference, exclusively to the participants and the media.

The IOCTA informs decision makers on prioritisation of actions in the field of high-tech crimes, online child sexual exploitation and online payment fraud. The views expressed in the IOCTA are mainly from a law enforcement perspective, combined with input from private industry, the financial sector and academia.

Read the IOCTA here: https://www.europol.europa.eu/iocta/2015/

“Cybercrime remains a growth industry. The Crime-as-a-Service (CaaS) business model, which grants easy

access to criminal products and services, enables a broad base of unskilled, entry level cybercriminals to launch attacks of a scale and scope disproportionate to their technical capability and asymmetric in terms of risks, costs and profits."

“While it is possible for organisations to invest in technological means to protect themselves, the human element will

always remain as an unpredictable variable and a potential vulnerability.

As such, social engineering is a common and effective tool used for anything from complex multi-stage attacks to fraud. Indeed, CEO fraud – where the attackers conduct detailed research on selected victims and their behaviour before initiating the scam – presents itself as a prominent emerging threat which can result in large losses for those affected."

DAY 01 Cybercrime Threats 2015

Best regards,The Joint Europol-Interpol Conference Team

SPEAKER: Mr Olivier Burgersdijk, Head of Strategy, European Cybercrime Centre, Europol

Page 4: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

4

SPEAKER: Mr Richard Domingues Boscovich, Assistant General Counsel, Digital Crimes Unit, Microsoft Corp.

• Creation of the Virus Information Alliance, allowing for collaboration on identifying malicious software;• Coordinated Malware Eradication - goal to eradicate malware families and, where possible, provide collected

data to law enforcement;• There were significant differences identified in the types of threats affecting users in different parts of the

world.

SPEAKER: Mr Sébastien De Brouwer, Executive Director, European Banking Federation

• Cyber Security Working Group, with three main streams: information sharing, awareness raising and regulatory issues;

• Europol's EC3 and EBF joint product: structured questionnaire; purpose: to identify relevant topics for the financial sector and prioritize identified topics;

• Outcome: threats and risks, current and new trends and developments, prevention and mitigation.

SPEAKER: Mr Kimmo Ulkuniemi, Assistant Director of Strategy and Outreach Sub-Directorate (CIO), INTERPOL Global Complex for Innovation

• Global need to understand cybercrime and define a strategy in addressing it;• Global need to increase cybercrime reporting activity;• Global Cybercrime Survey, aiming to collect information on the volume of cybercrime, capacity, public

awareness and the specific needs of LEA in cybercrime investigation/digital forensics.

DAY 01 Cybercrime Threats 2015

Threats Perceived by INTERPOL

Threats Perceived by the Industry Security Industry

Threats Perceived by the Financial Sector

Page 5: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

5

DAY 01 Building Capabilities to Fight Cybercrime

Building Capabilities to Fight Cybercrime in Hong Kong

SPEAKER: Mr Francis Chan, Head of Cyber Security and Technology Crime Bureau, Hong Kong Police Force

• Four major challenges faced by LEAs in handling cybercrime and examples of how Hong Kong Police Force cooperate with other parties;

• Cybercrime strategies should include awareness raising, international cooperation, law enforcement capability, legislation, criminal justice capacity, prevention and public-private partnerships;

• The case in Hong Kong: three-pronged strategy, focused on public awareness, collaboration and professional competencies.

Cyber-Fitness: How to get Competence

SPEAKER: Mr Carsten Meywirth, Assistant Commissioner, Division Serious and Organised Crime - Head of Subdivision Cybercrime, Bundeskriminalamt

• Technical challenges during cybercrime investigations include communication, massdata, crypto currencies, and darknet;

• Goals include achieving high competence at the top and basic competence in the width of a pyramid-like structure;

• Need for action, knowledge and tools sharing, involvement of cyberanalysts, IT, and police.

INTERPOL National Cyber Review

SPEAKER: Mr Kimmo Ulkuniemi, Assistant Director of Strategy and Outreach Sub-Directorate (CIO), INTERPOL Global Complex for Innovation

• The review is performed at the request of the INTERPOL Member Country and provided as a service to support its capacity building;

• It helps Member States to understand strength and weaknesses in overall capacity to combat cybercrime;

• Drafted by INTERPOL together with partners from academia and private sector.

Building Capabilities to Fight Cybercrime in Norway

SPEAKER: Mr Håvard Andre Aalmo, Police Superintendent, Head of Cybercrime Section, National Criminal Investigation Service

• Part of the Cyber Strategy for Norway, 2012: safeguard society’s ability to prevent, detect and investigate cybercrime;

• Enhance the police’s presence on the Internet;

• 2016 and onwards: • establishment of a Norwegian national cybercrime

centre; • increase in number of employees and new and adapted

office spaces; • emphasis on national capacity building and training; • international co-operation.

Page 6: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

6

SPEAKER: Mr Sanjay Virmani, Director INTERPOL Digital Crime Centre (IDCC), INTERPOL Global Complex for Innovation

• The IGCI has a Digital Forensics Laboratory, Digital Crime Investigative Support, Cyber Fusion Centre and INTERPOL Digital Crime Centre;

• INTERPOL Research Network (IRN), brings together INTERPOL, law enforcement agencies, private and public sector, academia;

• National Cyber Reviews.

SPEAKER: Mr Christopher K. Stangl, Acting Section Chief, Cyber Division, Federal Bueau of Investigation

• Develop a holistic assessment of the threat posed by cyber criminals and organizations;

• International and domestic law enforcement partners including Europol's EC3 and IGCI;

• Opening: October 1st 2015.

SPEAKER: Mr Troels Oerting, Group Chief Information Security Officer, Barclays

• Barclays will deliver all its financial services and products online; move all back office processes online as well;

• Safety, privacy, and security in cyberspace are fundamental rights;

• We need trusted alliances between the Industry and law enforcement supported by Europol and INTERPOL.

DAY 02 International Operational Cooperation Frameworks

Opening address INTERPOL Global Complex for Innovation (IGCI)

International Cyber Crime Coordination Cell (IC4)

Page 7: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

7

SPEAKER: Mr Francisco Luis, Head of Cyber Intelligence, European Cybercrime Centre, Europol

• EC3's products and services include technical and forensic support, operational analysis, dedicated training and strategic analysis products;

• Brings together public sector, retail, private sector, security companies, financial sector, member states, cyber units and academia;

• J-CAT has had 7 operational successes including Zero Access, Game Over Zeus, Shylock, Ramnit, Beebone.

SPEAKER: Ms Maria Vello, President and CEO, NCFTA

• NCFTA’s mission: companies, government agencies, and academia working together to neutralize cyber crime;

• Objectives: identify, mitigate, neutralize crime;

• No one person, company, agency or country can fight the cybercrime war alone.

DAY 02 International Operational Cooperation Frameworks

EC3/Joint Cybercrime Action Taskforce (J-CAT)

Tipping the Scale Against Today’s Global and Complex Cyber Threats

Page 8: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

8

SPEAKER: Mr Christian Karam, Cyber Threat Researcher, Cyber Innovation and Outreach Directorate (CIO), INTERPOL Global Complex for Innovation

• The role of the Cyber Research Lab is, among others, to operate as the Advanced Threat Research Team;

• Threat Research 5 Day Training Course, including hands-on Darknet setup, marketplaces design, and cryptocurrencies;

• The future is not what it used to be.

SPEAKERS: Ms Aimee Larsen-Kirkpatrick, Senior Research Fellow, APWG and Mr Peter Cassidy, Secretary General, APWG

• APWG was founded in 2003 to focus on Phishing; APWG.eu was established in 2014;

• Key missions: data exchange, research, global awareness;

• STOP.THINK.CONNECT is a global campaign to raise awareness and educate all people about how to stay safe and secure online.

DAY 02 Cyber Security

STOP.THINK.CONNECT

INTERPOL Prevention and Awareness Actions

Page 9: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

9

SPEAKER: Mr Christian Karam, Cyber Threat Researcher, Cyber Innovation and Outreach Directorate (CIO), INTERPOL Global Complex for Innovation

• An R&D approach to solving the cryptocurrency problem for law enforcement;

• Cryptocurrency related crimes include cybercrime, cyber-enabled crimes and traditional crime;

• Advanced threat research looking into blockchainware, blockchain crime and cryptocurrency research.

SPEAKERS: Mr Erik R. Barnett, Attaché to the European Union, U.S. Immigration and Customs Enforcement (ICE) Homeland Security Investigations (HSI) and Mr Olivier Burgersdijk, Head of Strategy, European Cybercrime Centre, Europol

• The event was co-organised by Europol's EC3 and U.S. ICE HSI for the second time this year, following its success in June 2014;

• The audience previewed the trailer for the upcoming Online Virtual Currency Training for International Law Enforcement;

• Several other actions are foreseen to further enhance capacity building and operational cooperation and to provide input for policy development.

SPEAKERS: Ms Ireen Lammerts, Security Advisor, SNS Bank and Mr Robert Schaap, Financial Specialist, Dutch Police - National High Tech Crime Unit

• The growth of NPM is a positive development;

• We intend to protect this rapidly growing sector by recognising and diminishing the possibilities for criminal abus;

• Prevention works best if all countries act.

DAY 02 Fighting the Abuse of Virtual Currencies

Deciphering Cryptocurrencies, the next decade's Cybercrime Enablers

Outcome of the Virtual Currencies Conference

Dutch model of public-private partnership for preventing the criminal use of virtual currencies

Page 10: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

10

SPEAKER: Mr Wouter Veenstra, Senior Policy Advisor, GFCE Secretariat

• A global (multistakeholder) forum on cyber capacity building;

• Goal: identify successful policies, practices and ideas and multiply them on a global level;

• Cybercrime Initiatives: Preventing and Combating Cybercrime in Southeast Asia and Cybersecurity and Cybercrime Trends in Africa.

SPEAKER: Mr. Olivier Burgersdijk, Head of Strategy, European Cybercrime Centre, Europol

• Operational and strategic cooperation;

• The types of partnerships include law enforcement, multi-disciplinary partnerships and sector-specific cooperation;

• Concrete follow-up actions include adapted capacity building and training and promotion of strategic cooperation.

DAY 02 Outcome of the Global Conference on Cyberspace (GCCS) for Law Enforcement

Improving International Cooperation in fighting cybercrime Global Forum on Cyber Expertise

Page 11: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

11

SPEAKER: Mr Olivier Burgersdijk, Head of Strategy, European Cybercrime Centre, Europol

• Challenges in the field of forensics;

• Bring practitioners together through the Forensic Experts Forum;

• Future outlook includes building practical experience with FEF, shared tool development environment, inter-connecting with other R&D networks, stimulate transparency and availability.

SPEAKER: Mr. Kimmo Ulkuniemi, Assistant Director of Strategy and Outreach Sub-Directorate (CIO), INTERPOL Global Complex for Innovation

• Purpose of the group is to advise INTERPOL General Secretariat in policy formulation and the project implementation regarding programmes and operation related to the cyber arena;

• Law enforcement, academia, industry, international organizations;

• First meeting to take place in Singapore/IGCI 30th November - 1st December 2015.

DAY 02 Alignment and Coordination of Innovation and R&D

Europol Forensics Experts Forum INTERPOL Global Cybercrime Expert Group IGCEG

Page 12: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

12

SPEAKER: Mr Jassim Al-Sulaiti, Criminal Intelligence Officer, Anti-Corruption and Financial Crimes Sub-Directorate, INTERPOL General Secretariat

• Mobile money payment system in Africa is preferred by money launderers in corruption, fraud, etc.;

• Daily usage of this type of payment by Eastern Africans;

• Remains a vulnerable system because of the lack of proper legislation.

SPEAKER: Mr William Wright, Director, Government Affairs & Cybersecurity Partnerships, Symantec Corporation

• Africa's Internet is already integrally connected to Europe's, especially Mediterranean countries; this connection will grow stronger as more undersea cables connect more of Africa;

• Government Cybersecurity Partnership Program, with the goal to enhance public-private partnerships to integrate the full range of Symantec's capabilities to help secure the global Internet ecosystem;

• Coming in January 2016: Cybercrime & Cyber Security Trends in Africa.

DAY 02 Cybercrime Evolution in Africa

Cyber security trends in Africa

Mobile - Money Payment System in Africa

Page 13: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

13

DAY 03 Cybercrime Cases - Law enforcement only

The third day was a closed session for law enforcement only. The opening addresses highlighted the challenges and opportunities from the perspective of the prosecution, followed by the presentation of

seven cases from different police agencies from all over the world, some of them in cooperation with private sector partners. Digital forensics was also discussed, with case studies, operational results and challenges in digital devices examination. All sessions analysed and showcased successful examples of collaboration between public and private sector, covering different areas from sextortion to cryptoware. The presentations included cases such as the Beebone Botnet, SIMDA Botnet, ACES 2015 and Downfall.

Page 14: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

14

“We foresee setting up a Joint Cyber Taskforce between INTERPOL and Europol, and welcome interested

law enforcement partners from around the world to join. The Taskforce aims to make the best use of existing frameworks to establish and promote conditions for operational cooperation. For countries willing to work directly together, we would like to have this Taskforce look into the development of a compatibility chart, which would help harmonize various legal and handling codes for information"

“From the side of Europol we will be happy to help you with that. In particular, we can add to create an overview of products that

can be used and areas in which cooperation can already be stimulated, even without compatibility of legal systems. Here we are talking about strategic assessments, prevention materials, training programmes and tools. Furthermore, we have agreed to jointly develop a partnership against the abuse of virtual currencies. This partnership we aim to conclude with law enforcement from countries around the world. It will have concrete joint actions to fight the abuse of virtual currencies by criminals, focussed around policy matters, operational cooperation and training"

“For now, we would like to encourage you to make sure you have exchanged all the business cards you need, to keep an active dialogue

with each other. Next year, the conference will be hosted in Singapore, in the INTERPOL Global Complex for Innovation. In next year’s conference we hope to focus even more on efforts made towards succesful identification and attribution. I look forward to welcoming you there, and to share what we all have achieved in the meantime. "

“We will now need to follow up on the fruitful discussions at this conference. It is time to step up the operational cooperation

between countries"

SPEAKERS: Mr Wil van Gemert, Deputy Director Operations, Europol and Mr Sanjay Virmani, Director INTERPOL Digital Crime Centre (IDCC), INTERPOL Global Complex for Innovation

DAY 03 Closing Remarks

Page 15: HIGHLIGHTS - Europol · 2016-03-07 · 2 Dear all, T hank you for making the third edition of the Europol - INTERPOL Cybercrime Conference a success! We have had the privilege to

15

See you in Singapore in 2016!