European Electronic Crime Task Force

Last updated
European
Electronic Crime Task Force
FoundedJune 30, 2009 (2009-06-30)
Founder
Type Information Sharing Working Group
FocusElectronic Crimes in Europe
Location
Members
  • 3 Founder Members
  • 19 Permanent Members
  • Community of Experts (more than 400 professionals)
Key people
Vanes Montanari, VP Security and Safety Poste Italiane - EECTF Chairman

The European Electronic Crime Task Force (EECTF) is an information sharing initiative, [1] [2] [3] [4] created in 2009 by an agreement [5] [6] [7] between the United States Secret Service, the Italian Ministry of Internal Affairs and Poste Italiane. The EECTF's mission is "to support the analysis and the development of best practices against cybercrime in European countries, through the creation of a strategic alliance between public and private sectors, including Law Enforcement, [4] the financial sector, [8] [9] academia, [1] [10] [11] international institutions, [12] [13] [14] and ICT security vendors". [15]

Contents

Accordingly, the EECTF aims to help the cyber security community by:

History

The EECTF was established on June 30, 2009, by an agreement between the United States Secret Service, the Italian Ministry of Internal Affairs and Poste Italiane, on the basis of the successful experiences of analogous ECTFs founded in the US by the Secret Service.

The United States Secret Service participates through its Rome office, the Italian Ministry of Interior participates through the Service of Postal and Telecommunications Police and Poste Italiane participates through the Information Security Department.

Initially restricted only to the only Founder Members, the EECTF was opened up thereafter to the main stakeholders in cybercrime, who expressed the will to contribute to a proactive sharing of relevant information. A Permanent Members Group has been started, which gathers to analyze emerging trends in cyber-crime and to discuss methodologies and techniques to combat them. [20] [21] [22] [23]

Governance

The EECTF is not a legal entity, it is a working group created on a voluntary basis, which has been governed since its creation by the EECTF Board made up of the three Founder Members: the United States Secret Service, represented by the special agent in charge of the Rome office, the Polizia Postale e delle Comunicazioni, represented by the head of service and Poste Italiane, represented by the CEO. Poste Italiane has chaired the EECTF Board since its inception. The chairman of the EECTF is Mr. Vanes Montanari, VP Security and Safety at Poste Italiane.

Administrative and operational activities are accomplished by the EECTF Technical Secretariat, held by Poste Italiane.

Modus operandi

The EECTF is run via monthly meetings of a select group of permanent members, quarterly open events extended to a wide community of selected experts and continuous sharing of information relevant to cybercrime and through dedicated specific tools.

Permanent members include internationally acknowledged organizations, both private and public, with a broad view on prevention, analysis and contrast of electronic crimes at European level, whose competencies might represent instances coming from whole domains of interest.

Permanent Members formally commit to proactively share information with other members of the group in a non-competitive environment, according to a non-disclosure agreement, and to actively contribute to the EECTF's activities, taking part to meetings and supporting the EECTF's development.

Additionally, in order to make the most out of the competencies of the whole EECTF community, an Expert Group has been started, which gathers on a periodic basis and is restricted to Permanent Members. It focuses on technical information sharing about new threats and possible countermeasures.

Constituency

The EECTF is made up of the following organizations:

MemberSectorCountryStatusSince
ABI Lab [9] [24] Research and InnovationItalyPermanent Member2013
American Express [8] Payment Systems and Financial Services ItalyPermanent Member2010
Bulgarian Police Law Enforcement Agencies Bulgaria Permanent Member2011
CA Technologies ICT Private Sector ItalyPermanent Member2012
Consip Public Administration ItalyPermanent Member2013
Citibank Payment Systems and Financial Services United StatesPermanent Member2011
Global Cyber Security Center [25] Research and InnovationItalyPermanent Member2010
Italian Ministry of Economy and Finance Public Administration ItalyPermanent Member2011
Kaspersky Great ICT Private Sector Romania / ItalyPermanent Member2011
MasterCard Payment Systems and Financial Services ItalyPermanent Member2012
NTT Data ICT Private Sector ItalyPermanent Member2013
Polizia Postale e delle Comunicazioni - Polizia di Stato Law Enforcement Agencies ItalyFounder Member2009
Poste Italiane Payment Systems and Financial Services ItalyFounder Member and Chairman2009
Romanian Police Law Enforcement Agencies Romania Permanent Member2011
RSA - EMC2 [15] ICT Private Sector United States / ItalyPermanent Member2010
Selex ES ICT Private Sector ItalyPermanent Member2013
Symantec ICT Private Sector ItalyPermanent Member2011
UniCredit Payment Systems and Financial Services ItalyPermanent Member2012
UNICRI - United Nations Interregional Crime and Justice Research Institute Research and InnovationGlobalPermanent Member2011
United States Secret Service Law Enforcement Agencies United StatesFounder Member2009
Verizon ICT Private Sector United StatesPermanent member2010
Visa Europe Payment Systems and Financial Services UKPermanent Member2011

EECTF Community and Plenary Meetings

With the aim of aggregating all the potentially valuable stakeholders, an invitation-only Community of Experts has been set up as a public interface of the Permanent Members Group. It is made up of acknowledged professionals and organizations who are distinguished as active contributors in the field of prevention and contrast of electronic crime. The EECTF gathers in periodic plenary meetings, organized to focus on general trends in cybercrime and security issues of current interest. More than 10 Plenary Meetings have been organized so far, as listed below.

Plenary Meetings
IJune 30, 2009The European Electronic Crime Task Force
II [26] March 16, 2010Successful Cybercrime Investigations
IIIJune 24, 2010International Funds Transfer and cooperation with LEAs
IV [27] February 10, 2011Trends in Cybercrime and Cyberthreats: Europe and the United States
V [28] May 18, 2011 Identity theft: Malware, Botnet & Social Networking
VINovember 15, 2011 Cybercrime Underground Economy
VIIMarch 6, 2012 Advanced Persistent Threats: Attacks to Corporate Information Systems
VIIIJuly 18, 2012Secure Identities in Cyberspace
IX [11] November 29, 2012Security of Innovative Payment Systems
X [29] [30] April 23, 2013 CERTs and International Cooperation Networks
XINovember 5, 2013Security of Internet Payments and Online Services
XIIMarch 31, 2015New Trends in Cyber Crime

Past speakers include:

Additionally, a monthly newsletter, CyberNews, is published within the community, to point out the most relevant events and trends in the cybercrime scenario.

See also

Related Research Articles

<span class="mw-page-title-main">Computer security</span> Protection of computer systems from information disclosure, theft or damage

Computer security, cyber security, digital security or information technology security is the protection of computer systems and networks from attacks by malicious actors that may result in unauthorized information disclosure, theft of, or damage to hardware, software, or data, as well as from the disruption or misdirection of the services they provide.

<span class="mw-page-title-main">United States Secret Service</span> U.S. federal law enforcement agency

The United States Secret Service is a federal law enforcement agency under the Department of Homeland Security charged with conducting criminal investigations and protecting U.S. political leaders, their families, and visiting heads of state or government. Until 2003, the Secret Service was part of the Department of the Treasury, as the agency was founded in 1865 to combat the then-widespread counterfeiting of U.S. currency. President Abraham Lincoln signed the legislation on April 14, 1865, just a few hours before he was assassinated. In 1901, the Secret Service was also assigned to presidential protection duties.

<span class="mw-page-title-main">Cybercrime</span> Type of crime based in computer networks

Cybercrime is a type of crime involving a computer or a computer network. The computer may have been used in committing the crime, or it may be the target. Cybercrime may harm someone's security or finances.

<span class="mw-page-title-main">Europol</span> European Union law enforcement agency

Europol, officially the European Union Agency for Law Enforcement Cooperation, is the law enforcement agency of the European Union (EU). Established in 1998, it is based in The Hague, Netherlands, and serves as the central hub for coordinating criminal intelligence and supporting the EU's member states in their efforts to combat various forms of serious and organized crime, as well as terrorism.

<span class="mw-page-title-main">Polizia di Stato</span> National police force in Italy

The Polizia di Stato is one of the national police forces of Italy. Alongside the Carabinieri, it is the main police force for providing police duties, primarily to cities and large towns, and with its child agencies it is also responsible for highway patrol (autostrade), railways (ferrovie), airports (aeroporti), customs as well as certain waterways, and assisting the local police forces.

<span class="mw-page-title-main">Communications & Information Services Corps</span> Military unit

The Communications and Information Services Corps (CIS) – formerly the Army Corps of Signals – is one of the combat support corps of the Irish Defence Forces, the military of Ireland. It is responsible for the installation, maintenance and operation of communications and information systems for the command, control and administration of the Defence Forces, and the facilitation of accurate, real-time sharing of intelligence between the Army, Naval Service and Air Corps branches at home and overseas.

<span class="mw-page-title-main">Convention on Cybercrime</span> 2001 international treaty on cybercrime

The Convention on Cybercrime, also known as the Budapest Convention on Cybercrime or the Budapest Convention, is the first international treaty seeking to address Internet and computer crime (cybercrime) by harmonizing national laws, improving investigative techniques, and increasing cooperation among nations. It was drawn up by the Council of Europe in Strasbourg, France, with the active participation of the Council of Europe's observer states Canada, Japan, the Philippines, South Africa and the United States.

<span class="mw-page-title-main">Internet police</span> Term describing governmental and official involvement in cyber policing

Internet police is a generic term for police and government agencies, departments and other organizations in charge of policing the Internet in a number of countries. The major purposes of Internet police, depending on the state, are fighting cybercrime, as well as censorship and propaganda.

The Russian Business Network is a multi-faceted cybercrime organization, specializing in and in some cases monopolizing personal identity theft for resale. It is the originator of MPack and an alleged operator of the now defunct Storm botnet.

The Federal Office of Police of Switzerland is subject to the Federal Department of Justice and Police. It is responsible for the coordination between cantonal police corps and between Swiss and foreign police forces. It also controls the Swiss internal intelligence agency, Dienst für Analyse und Prävention and investigates organised crime, money laundering and terrorism.

The United Nations Interregional Crime and Justice Research Institute (UNICRI) is one of the five United Nations Research and Training Institutes. The institute was founded in 1968 to assist the international community in formulating and implementing improved policies in the field of crime prevention and criminal justice. Its work currently focuses on Goal 16 of the 2030 Agenda for Sustainable Development, that is centred on promoting peaceful, just and inclusive societies, free from crime and violence.

There is no commonly agreed single definition of “cybercrime”. It refers to illegal internet-mediated activities that often take place in global electronic networks. Cybercrime is "international" or "transnational" – there are ‘no cyber-borders between countries'. International cybercrimes often challenge the effectiveness of domestic and international law, and law enforcement. Because existing laws in many countries are not tailored to deal with cybercrime, criminals increasingly conduct crimes on the Internet in order to take advantages of the less severe punishments or difficulties of being traced. No matter, in developing or developed countries, governments and industries have gradually realized the colossal threats of cybercrime on economic and political security and public interests. However, complexity in types and forms of cybercrime increases the difficulty to fight back. In this sense, fighting cybercrime calls for international cooperation. Various organizations and governments have already made joint efforts in establishing global standards of legislation and law enforcement both on a regional and on an international scale. China–United States cooperation is one of the most striking progress recently, because they are the top two source countries of cybercrime.

<span class="mw-page-title-main">Massimo Sarmi</span> Italian businessman (born 1948)

Massimo Sarmi is an Italian businessman. He was the chief executive officer of Poste italiane Spa from May 2002 to April 2014.

<span class="mw-page-title-main">European Cybercrime Centre</span>

The European Cybercrime Centre is the body of the Police Office (Europol) of the European Union (EU), headquartered in The Hague, that coordinates cross-border law enforcement activities against computer crime and acts as a centre of technical expertise on the matter.

<span class="mw-page-title-main">Microsoft Digital Crimes Unit</span>

The Microsoft Digital Crimes Unit (DCU) is a Microsoft sponsored team of international legal and internet security experts employing the latest tools and technologies to stop or interfere with cybercrime and cyber threats. The Microsoft Digital Crimes Unit was assembled in 2008. In 2013, a Cybercrime center for the DCU was opened in Redmond, Washington. There are about 100 members of the DCU stationed just in Redmond, Washington at the original Cybercrime Center. Members of the DCU include lawyers, data scientists, investigators, forensic analysts, and engineers. The DCU has international offices located in major cities such as: Beijing, Berlin, Bogota, Delhi, Dublin, Hong Kong, Sydney, and Washington, D.C. The DCU's main focuses are child protection, copyright infringement and malware crimes. The DCU must work closely with law enforcement to ensure the perpetrators are punished to the full extent of the law. The DCU has taken down many major botnets such as the Citadel, Rustock, and Zeus. Around the world malware has cost users about $113 billion and the DCU's jobs is to shut them down in accordance with the law.

The Polizia Postale e delle Comunicazioni is one of the units of the Polizia di Stato, the State Police of Italy. Its functions include the investigation of cybercrime.

The following outline is provided as an overview of and topical guide to computer security:

<span class="mw-page-title-main">National Cyber Security Centre (Ireland)</span>

The National Cyber Security Centre (NCSC) is a government computer security organisation in Ireland, an operational arm of the Department of the Environment, Climate and Communications. The NCSC was developed in 2013 and formally established by the Irish government in July 2015. It is responsible for Ireland's cyber security, with a primary focus on securing government networks, protecting critical national infrastructure, and assisting businesses and citizens in protecting their own systems. The NCSC incorporates the Computer Security Incident Response Team (CSIRT-IE).

<span class="mw-page-title-main">Strengthening State and Local Cyber Crime Fighting Act of 2017</span>

The Strengthening State and Local Cyber Crime Fighting Act of 2017 is a bill introduced in the United States House of Representatives by U.S. Representative John Ratcliffe (R-Texas). The bill would amend the Homeland Security Act of 2002 to authorize the National Computer Forensics Institute, with the intent of providing local and state officials with resources to better handle cybercrime threats. Ratcliffe serves as the current chairman of the House Homeland Security Subcommittee on Cybersecurity and Infrastructure Protection.

Ghana has one of the highest rates of cybercrime in the world, ranking 7th in a 2008 Internet Crime Survey. The most popular form of cybercrime in Ghana is cyberfraud and is typically achieved via credit card fraud. However, recent decreases in universal credit card usage has seen the expansion of other cybercrimes such as blackmail and hacking. This growth in crime has warranted a government response, with policies specifically addressing the cyberspace being developed. This has necessitated various studies including a cyber security maturity study which was inaugurated by the Ministry of Communications and conducted by the Global Cyber Security Capacity Center (GCSCC) of the University of Oxford in collaboration with the World Bank.

References

  1. 1 2 Baldoni Roberto; Chockler Gregory (2012). Collaborative Financial Infrastructure Protection: Tools, Abstractions, and Middleware. Springer. pp. 33–34. ISBN   978-3-642-20419-7.
  2. "The 21st Century's Lexicon: E-Crime". Treccani Italian Encyclopedia (in Italian). Archived from the original on 2014-05-21. Retrieved 2014-05-20.
  3. European Commission. "Actions under the responsibility of Member States: Action 38 in Italy" (website). Implementation of the Digital Agenda for Europe. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  4. 1 2 "US Secret Service Establishes Second European Electronic Crimes Task Force". HostExploit . June 2010. Archived from the original (Press Release) on 2014-05-17. Retrieved 2013-10-15.
  5. "United States Secret Service signs partnership agreement with Italian officials establishing the first European Electronic Crimes Task Force" (PDF). USSS website (Press Release). July 2009. Archived from the original (PDF) on 2012-09-15. Retrieved 2013-10-15.
  6. Istituto Affari Internazionali - Osservatorio di Politica Internazionale (May 2011). "Cyber Security: Europa e Italia" (PDF). Italian Parliament's website (in Italian). p. 22.
  7. The European Union Pilot Project on Transatlantic Methods for handling global challenges in the European Union and United States (June 2011). "EU-U.S. Security Strategies: comparative scenarios and recommendations" (PDF). Website of the Center for Strategic and International Studies. p. 65. Archived (PDF) from the original on 2013-05-16. Retrieved 2013-10-15.
  8. 1 2 RAND Corporation (March 2012). "Feasibility Study for a European Cybercrime Center" (PDF). European Commission's website. p. 62. Archived from the original (PDF) on 2014-05-19. Retrieved 2013-10-10.
  9. 1 2 "Banking Research & Innovation Centre" (PDF). ABI Lab's website (brochure) (in Italian and English). 2014. p. 2. Archived from the original on 2014-05-21. Retrieved 2014-05-21.
  10. Maioli Cesare (2010). "Project Card: Cooperation with EECTF". University of Bologna - CIRSFID website (in Italian). Archived from the original on 2014-05-21. Retrieved 2014-05-20.
  11. 1 2 Royal Holloway University of London (December 2012). "Dr. Gerhard Hancke speaks at European Electronic Crime Task Force event". Archived from the original on 2014-05-21. Retrieved 2014-05-20.
  12. 1 2 "Cyber Crime: the risks for the economy and the enterprises" (PDF). UNICRI's website. Round Table Agenda. November 2013. Archived (PDF) from the original on 2014-05-20. Retrieved 2014-05-20.
  13. "ITU Geneva: Poste Italiane signs a new partnership for Cybersecurity" (PDF). Poste Italiane's website (Press Release). October 2009. Archived from the original (PDF) on 2013-10-22. Retrieved 2014-05-19.
  14. "ITU Geneva: Poste Italiane signs a new partnership for Cybersecurity". ITU IMPACT's website. October 2009. Archived from the original (Press Release) on 2014-05-21. Retrieved 2014-05-20.
  15. 1 2 "RSA joins European Electronic Crime Task Force" (Press Release). DataManager's website (in Italian). February 2011. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  16. "RSA Conference Europe Announces Full Keynote Line-Up for Annual Information Security Event". Reuters . September 2011. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  17. "RSA Conference Europe Announces Full Keynote Line-Up for Annual Information Security Event". Business Wire . September 2011. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  18. Banche e Sicurezza 2013 (June 2013). "Le strategie di protezione tra cybercrime e sicurezza fisica nelle banche e nei settori più a rischio" (PDF) (Event Agenda) (in Italian). Archived (PDF) from the original on 2014-05-20. Retrieved 2014-05-20.
  19. "IT Security and Frauds Working Group". ABILab's website (in Italian). Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  20. "Camera: commissione Trasporti, oggi dalle 14 audizioni su sicurezza reti" (in Italian). ASCA. December 2012. Archived from the original (Press Release) on 2014-05-20. Retrieved 2014-05-20.
  21. "Public Hearing of the EECTF Chairman at the Chamber of Deputies of Italian Parliament on EECTF activities and trends of cyber security in Italy" (Video Stream). YouTube (in Italian). December 2012. Archived from the original on 2016-08-04. Retrieved 2016-11-29.
  22. "Public Hearing of the EECTF Chairman at the Chamber of Deputies of Italian Parliament on EECTF activities and trends of cyber security in Italy" (Stenographic Report). Italian Chamber of Deputies website (in Italian). December 2012. Archived from the original on 2014-05-21. Retrieved 2014-05-20.
  23. "Public Hearing of the EECTF Chairman at the Chamber of Deputies of Italian Parliament on EECTF activities and trends of cyber security in Italy" (Audio Streaming and Podcast). Italian Parliament Web Radio (in Italian). December 2012. Archived from the original on 2014-05-21. Retrieved 2014-05-20.
  24. "Home - ABI Lab". abilab.it. Archived from the original on 2012-08-14. Retrieved 2014-05-20.
  25. "Events - Global Cyber Security Center - GCSEC". gcsec.org. Archived from the original on 2014-05-21. Retrieved 2014-05-21.
  26. "Poste: contro il crimine informatico oggi a Roma l'EECTF". Quotidiano Finanza (in Italian). March 2010. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  27. "EECTF work praised by Poste Italiane's Sarmi". Post&Parcel. February 2011. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  28. "Poste Italiane: summit task-force Italia-Usa contro crimini informatici". Wall Street Italia (in Italian). May 2011. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  29. "CERT's and International Cooperation Networks". SERIT - Security Research in Italy. April 2013. Archived from the original on 2014-05-19. Retrieved 2014-05-19.
  30. "NESSoS invited presentation at EECTF 2013". NESSoS FP7 Project. April 2013. Archived from the original on 2014-05-20. Retrieved 2014-05-20.
  31. "CERT-EU News Monitor". europa.eu. Archived from the original on 2014-03-31. Retrieved 2014-05-19.
  32. "English section". garanteprivacy.it. Archived from the original on 2014-05-21. Retrieved 2014-05-21.
  33. "US Ambassador to Italy, David Thorne, speaks at European Electronic Crime Task Force summit". US Embassy to Italy's website (in Italian). May 2011. Archived from the original (Press Release) on 2014-05-20. Retrieved 2014-05-19.
  34. "United States Secret Service: Rome Electronic Crimes Task Force". secretservice.gov. Archived from the original on 2015-03-13. Retrieved 2015-03-04.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.