Conclusions from the Workshop to Strengthen Regional Cyber Norms Guidance through Practice-Based Approaches and the Case of Ransomware

EU CyberNet and LAC4 co-hosted on 8th July a workshop in New York in the premises of Estonian Mission to the UN to strengthen regional cyber norms guidance through practice-based approaches and the case of ransomware as a side-event of the UN Open-ended Working Group on ICTs together with RUSI, Estonia, Chile and the Dominican Republic.

The workshop aimed to enhance a practice-based and regionally sensitive norms guidance by addressing ransomware incidents in Latin America and the Caribbean. Participants shared experiences to collectively map how this cross-cutting regional concern can inform regional norms guidance.

Representatives of Chile and the Dominican Republic shared lessons from ransomware incidents. Chile detailed its Ministry of Foreign Affairs’ efforts to implement norms of responsible state behavior, focusing on international cooperation and information exchange. The Dominican Republic described their cybersecurity governance model, which enables quick interagency cooperation and collaboration with private sector actors, which crucial in handling major ransomware incidents.

Further insights were provided by representatives from Colombia, Uruguay, and Brazil. Colombia reported their swift and efficient response to ransomware attacks through cooperation with public institutions and private sector actors, emphasizing the importance of establishing incident response protocols and learning from past incidents. Uruguay discussed applying norms of responsible state behavior to ransomware cases, highlighting their participation in the Counter Ransomware Initiative and efforts to strengthen national cybercrime capabilities. Brazil outlined the role of government coordination, describing their Federal Incident Management Networks and special cybercrime directorate that coordinate responses at the state level, and mentioning their National Cybersecurity Council, which includes civil society organizations.

Participants discussed ransomware as an emerging threat to international peace and security, as recognized in the Annual Progress Report of the OEWG. The need for further steps towards a practice-oriented dialogue on how norms connect with such emerging threats was emphasized. It was acknowledged that countries in Latin America and the Caribbean have been dealing with an increasing number of ransomware incidents in recent years, disproportionately impacting governments and critical national infrastructure.

In response, LAC4 highlighted their work in enhancing regional capabilities to combat ransomware through awareness and technical trainings, crisis response, and collaboration at various levels. This ongoing effort by LAC4 serves as a mean to assist countries, underscoring the importance of collective regional efforts to address and mitigate the growing threat of ransomware.

The side-event workshop was organized by EU CyberNet, LAC4, Permanent Mission of Estonia to the United Nation, Ministry of Foreign Affairs of Chile, Ministry of Foreign Affairs of the Dominican Republic and Royal United Services Intitute (RUSI).

Keep reading similar articles
EU Cyber Diplomacy Fellowship Concluded with a Visit to New York

The EU Cyber Diplomacy Fellowship, aimed to enhance global cooperation and contribute to the United Nations’ framework for responsible state behaviour in cyberspace, concluded this week after series of monthly activities with a visit to New York where the Fellows participated in the 8th United Nation’s session of the Open-ended Working Group (OEWG) on ICTs and several side-events.

Marcel Gerardino: “Technology has great value for advancing societies but in the wrong hands it has the potential to cause a lot of harm.”

Mini-interviews with EU CyberNet experts. Marcel Gerardino has been part of the Expert Pool for 3 years and has contributed to the work of EU CyberNet.

At CAMP 2024: AI-age incident response needs to evolve with technology

This week, Liina Areng, the Director of EU CyberNet participated in the CAMP 2024 Annual Meeting in Seoul to share Estonia’s and Europe’s perspective in cybersecurity with special emphasis on ransomware and artificial intelligence.

EU Cyber Diplomacy Fellowship to conclude with the visit to New York

EU Cyber Diplomacy Fellowship (EU:CD Fellowship) will have its final activity this week with the fellows’ visit to New York to participate at the UN’s Open-Ended Working Group on ICTs.

C-DAYS Conference “+Prevention”: Level your skills UP to advance efforts in building cyber capacity worldwide

Cecilia Popa, Experts Lead of EU CyberNet, participated as a Keynote Speaker at the 10th edition of the C-DAYS conference on the topic of “EU projects for Skills”, highlighting the EU CyberNet’s skillset framework which forms the foundation of our Experts Pool deployed worldwide to build cyber capacity.

Panel: Cyber Resilience Builds on Situational Awareness, Trainings and Exercising

On 18 June the EU CyberNet’s Training and Services Lead Lauri Aasmann took part of the EuRepoC Conference 2024 “Promises & Pitfalls for the EU’s Cyber Foreign and Security Policy” which focused on the attribution capacities of EU and private actors; emerging hybrid threats; the EU’s role in capacity building; and the intricate relation between critical infrastructure protection and conflict resolution in Europe.