Cyber Security Global Alliance
Cybersecurity Incident Response Team

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) draw attention to online risks and give advice, and in building awareness on how to stay safe.

Cybercrime affects us all: as individuals and society as a whole. On the one hand, new technologies have made many aspects of our lives easier, from social interactions to banking, shopping, events, transportation, and more. On the other hand, our increasing reliance on the Internet has created more risks and opened new paths for criminal activity.

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) run regular awareness events and campaigns to highlight major forms of cybercrime and provide tips on how to stay safe.

#YouMayBeNext (Initiated by Interpol)

Cyberattacks can happen to anyone at any time.

The #YouMayBeNext campaign focuses on digital extortion threats including:

- Sextortion
- Ransomware
- Distributed Denial-of-Services (DDoS)

The campaign offers practical tips to ensure that individuals and businesses are better equipped with the knowledge to safeguard their systems, networks and devices.

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) follows the work being done by Interpol and other domestic and international law enforcement agencies to continue their work in all countries that we operate.

Together we help members and other countries to identify, triage and coordinate the response to cyberthreats globally.

By collaborating with private cybersecurity partners who share up-to-date data on threats, trends and risks, we ensure police have the most relevant up-to-date threat information to guide their actions.

We use this data to generate cyber intelligence to assist countries in developing prevention and disruption strategies to target the most pressing threats while looking ahead to prepare for emerging ones.

Cybersecurity Incident Response Team (CSGA-CSIRT)

Our Cybersecurity Incident Response Team (CSGA-CSIRT) brings together cyber experts from law enforcement and industry, including emergency professionals, public safety organizations and domestic and international agencies to gather and analyze all available information on criminal activities in cyberspace to provide countries with coherent, actionable intelligence.

The CCTF starting in January 2023 will publish reports to alert countries to new, imminent or evolving cyberthreats. Working with other domestic and international law enforcement agencies.

These reports will cover identified threats involving malware, phishing, compromised government websites, social engineering fraud and more. Since 2017, Interpol has issued more than 800 reports to police services in more than 150 countries.

On-the-ground support against cybercrime

In close cooperation with member countries, the private sector and national Computer Emergency Response Teams (CERTs), we help coordinate transnational cybercrime investigations and operations worldwide.

Cryptojacking

Cybercrime investigators and experts from police and national Computer Emergency Response Teams (CERTs) in the region will work together to locate and alert victims with education, awareness, certification and other global services to help victims find answers and help us solve these issues in the future.

Compromised Websites

Data provided by a private cybersecurity partner identified a strain of malware infecting e-commerce websites to steal payment card details and personal data. Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) will issue Cyber Activity Reports to the affected countries, highlighting the threat to support their national investigations.

Global Cyber Surges

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) will lead several operations across different regions targeting organized cybercrime activity. These ‘global cyber surges’ brought together investigators to act on threat information developed with private sector partners.

Public-Private Partnerships

Partnerships are essential in fighting cybercrime since the expertise often lies in other sectors

When it comes to cybercrime, police do not have all the answers. Partnerships with other organizations allow Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) and its members and other participating countries to benefit from the cyber and technological expertise available in the public, private and academic sectors.

How Can I Contribute?

We are always looking for new partners with cyber skills and expertise to complement that of the global law enforcement community. Cyber Security Global Alliance and the Terranova Cyber Solutions currently have formal partnerships with organizations and private companies in the cybersecurity, information technology, aerospace, defense, and fintech industries.

If you feel your company would be a good fit to support Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) cybercrime mission, we encourage you to reach out to explore potential partnership options, including:

Information sharing – data-sharing agreements serve as frameworks for partners to share crucial cybercrime-related data with us.

Secondment of experts – both law enforcement and the private sector can send experts to work temporarily on our premises for closer daily collaboration in conducting research, developing cyber intelligence and supporting global operations.

Intelligence analysis – providing tools, techniques and software to assist us in analyzing cyber threats, as well as access to open source or internal data sets.

Developing/delivering training – in-kind or financial support for capacity building and training activities.

Are there other areas where you feel your company could support our cybercrime activities? Let’s start a discussion.

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT)

Comprised of cybercrime experts from police, private industry and academia, the group serves as a platform for the exchange of cyber information and good practices to support law enforcement. It also assists INTERPOL in developing strategies for its cybercrime issues and projects. When necessary, the group meets with representatives for Regional Working Groups on Cybercrime for Heads of Units to gain a better understanding of the challenges faced by specific regions and help propose solutions.

Regional Working Groups on Cybercrime for Heads of Units

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) has seven regional working groups for the Heads of Cybercrime units in Canada, United States, Middle East, Africa, Australia, Europe, and NATO. They will start meeting regularly in 2023 to advise us on formulating policies and implementing projects to combat cybercrime.

Meetings for 2023 will have different themes based on the needs of each region:

The Middle East and Africa group will meet to discuss recent cybercrime cases and the importance of cooperation with private industry. The African group will exchange best practices for investigations and digital forensics techniques, where joint operations against business email compromise, crypto jacking, phishing and other scams were also planned.

Recommendations on cyber capability development, operational activities, prevention and a regional framework were adopted by the Americas group

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) Cyber Drill and Conference


After a successful trial run in 2023, in Waterloo, Ontario, Canada and this will be our first annual conference, bringing together cyber experts from law enforcement, the private sector and academia for in-depth discussions on the latest cyberthreats and how to overcome them through a collective global response.

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) draw attention to online risks and give advice, and in building awareness on how to stay safe.

Cybercrime affects us all: as individuals and society as a whole. On the one hand, new technologies have made many aspects of our lives easier, from social interactions to banking, shopping, events, transportation, and more. On the other hand, our increasing reliance on the Internet has created more risks and opened new paths for criminal activity.

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) run regular awareness events and campaigns to highlight major forms of cybercrime and provide tips on how to stay safe.

#YouMayBeNext (Initiated by Interpol)
Cyberattacks can happen to anyone at any time.

The #YouMayBeNext campaign focuses on digital extortion threats including:

- Sextortion
- Ransomware
- Distributed Denial-of-Services (DDoS)

The campaign offers practical tips to ensure that individuals and businesses are better equipped with the knowledge to safeguard their systems, networks and devices.

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) follows the work being done by Interpol and other domestic and international law enforcement agencies to continue their work in all countries that we operate.

Together we help members and other countries to identify, triage and coordinate the response to cyberthreats globally.

By collaborating with private cybersecurity partners who share up-to-date data on threats, trends and risks, we ensure police have the most relevant up-to-date threat information to guide their actions.

We use this data to generate cyber intelligence to assist countries in developing prevention and disruption strategies to target the most pressing threats while looking ahead to prepare for emerging ones.

Cybersecurity Incident Response Team (CSGA-CSIRT)

Our Cybersecurity Incident Response Team (CSGA-CSIRT) brings together cyber experts from law enforcement and industry, including emergency professionals, public safety organizations and domestic and international agencies to gather and analyze all available information on criminal activities in cyberspace to provide countries with coherent, actionable intelligence.

The CSIRT started in May 2024 will publish reports to alert countries to new, imminent or evolving cyberthreats. Working with other domestic and international law enforcement agencies.

These reports will cover identified threats involving malware, phishing, compromised government websites, social engineering fraud and more. Since 2017, Interpol has issued more than 800 reports to police services in more than 150 countries.

On-the-ground support against cybercrime

In close cooperation with member countries, the private sector and national Computer Emergency Response Teams (CERTs), we help coordinate transnational cybercrime investigations and operations worldwide.

Cryptojacking

Cybercrime investigators and experts from police and national Computer Emergency Response Teams (CERTs) and Cybersecurity Incident Response Teams (CSGA-CSIRT) in the region will work together to locate and alert victims with education, awareness, certification and other global services to help victims find answers and help us solve these issues in the future.

Compromised Websites

Data provided by a private cybersecurity partner identified a strain of malware infecting e-commerce websites to steal payment card details and personal data. Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) will issue Cyber Activity Reports to the affected countries, highlighting the threat to support their national investigations.

Global Cyber Surges

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) will lead several operations across different regions targeting organized cybercrime activity. These ‘global cyber surges’ brought together investigators to act on threat information developed with private sector partners.

Public-Private Partnerships

Partnerships are essential in fighting cybercrime since the expertise often lies in other sectors

When it comes to cybercrime, police do not have all the answers. Partnerships with other organizations allow Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) and its members and other participating countries to benefit from the cyber and technological expertise available in the public, private and academic sectors.

How Can I Contribute?

We are always looking for new partners with cyber skills and expertise to complement that of the global law enforcement community. Cyber Security Global Alliance and the Terranova Cyber Solutions currently have formal partnerships with organizations and private companies in the cybersecurity, information technology, aerospace, defense, and fintech industries.

If you feel your company would be a good fit to support Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) cybercrime mission, we encourage you to reach out to explore potential partnership options, including:

Information sharing – data-sharing agreements serve as frameworks for partners to share crucial cybercrime-related data with us.

Secondment of experts – both law enforcement and the private sector can send experts to work temporarily on our premises for closer daily collaboration in conducting research, developing cyber intelligence and supporting global operations.

Intelligence analysis – providing tools, techniques and software to assist us in analyzing cyber threats, as well as access to open source or internal data sets.

Developing/delivering training – in-kind or financial support for capacity building and training activities.

Are there other areas where you feel your company could support our cybercrime activities? Let’s start a discussion.

Cyber Security Global Alliance’s Cyber Crime Task Force (CCTF)

Comprised of cybercrime experts from police, private industry and academia, the group serves as a platform for the exchange of cyber information and good practices to support law enforcement. It also assists INTERPOL in developing strategies for its cybercrime issues and projects. When necessary, the group meets with representatives for Regional Working Groups on Cybercrime for Heads of Units to gain a better understanding of the challenges faced by specific regions and help propose solutions.

Regional Working Groups on Cybercrime for Heads of Units

Cyber Security Global Alliance’s Cybersecurity Incident Response Team (CSGA-CSIRT) has seven regional working groups for the Heads of Cybercrime units in Canada, United States, Middle East, Africa, Australia, Europe, and NATO. They will start meeting regularly in 2023 to advise us on formulating policies and implementing projects to combat cybercrime.

Meetings for 2024 will have different themes based on the needs of each region:

The Middle East and Africa group will meet to discuss recent cybercrime cases and the importance of cooperation with private industry. The African group will exchange best practices for investigations and digital forensics techniques, where joint operations against business email compromise, crypto jacking, phishing and other scams were also planned.

Our Mission

To build community resilience, we foster collaboration between security leaders, facilitate knowledge sharing on emerging risks, and conduct outreach programs. Our initiatives bring diverse stakeholders together to address challenges through open dialogue and coordinated efforts.

Our Purpose

Our purpose is to empower individuals, organizations and communities worldwide with the knowledge, resources and expertise needed to mitigate cyber threats, protect digital assets and reduce risk through all levels of integrated education.