Industry Collaboration - Disrupting Cybercrime Networks Globally
Basically, cybercrime is like a global business, and stopping it needs teamwork across countries.
At RSAC 2026, leaders from Fortinet, INTERPOL, and Microsoft discussed the need for global collaboration to disrupt cybercrime networks. This approach aims to change the economics of cybercrime, making it less profitable and more difficult for criminals to operate. A collective effort is essential for effective long-term disruption.
What Happened
At the recent RSAC Conference 2026, a panel featuring Derek Manky from Fortinet and leaders from the World Economic Forum, INTERPOL, and Microsoft discussed a pressing issue: how to disrupt cybercrime networks on a global scale. Cybercrime has evolved into a sophisticated ecosystem where various actors, from ransomware groups to money launderers, collaborate to maximize their efficiency and profits. This shift in the landscape necessitates a new approach to cybersecurity that goes beyond traditional methods of addressing individual threats.
The panel emphasized that cybercriminals operate continuously, unlike the episodic nature of past threats. This means that defenders must also adopt a persistent collaboration model that targets the entire ecosystem rather than just specific attacks. The goal is to create a framework that allows for ongoing disruption of cybercrime operations, thereby reducing their effectiveness and profitability.
Who's Affected
The implications of these discussions extend to organizations across various sectors. From technology companies to law enforcement agencies, everyone has a role to play in combating cybercrime. Cybercriminals exploit jurisdictional boundaries, making international cooperation essential. Victims of cybercrime, which can range from individuals to large corporations, also bear the brunt of these attacks, facing financial losses and reputational damage.
Moreover, the global economy is at risk as cybercrime becomes more sophisticated and widespread. As criminal networks become more organized, the potential for large-scale disruptions increases, affecting not just targeted organizations but entire industries. Thus, the need for a coordinated response is more critical than ever.
What Data Was Exposed
While the session did not focus on specific data breaches, it highlighted the financial systems that cybercriminals exploit to monetize their activities. The discussion around the Cybercrime Atlas initiative illustrated how understanding the relationships between various actors in the cybercrime ecosystem can help in mapping out the infrastructure they rely on. This shared intelligence is crucial for developing strategies that can disrupt multiple layers of criminal networks simultaneously.
The panelists pointed out that successful disruption requires a comprehensive understanding of how cybercriminals operate. By mapping these relationships, organizations can better coordinate their efforts and target the systems that allow cybercrime to thrive, rather than just addressing individual incidents.
What You Should Do
Organizations should take proactive steps to engage in collaborative efforts aimed at disrupting cybercrime. This includes participating in initiatives like the Cybercrime Atlas, which fosters cooperation among industry, law enforcement, and academia. Establishing clear operational roles within these collaborations is crucial, ensuring that all parties understand how and when to act once malicious activities are identified.
Additionally, organizations must invest in building regional disruption communities that can address local threats while contributing to global efforts. By fostering a culture of collaboration and information sharing, the cybersecurity community can create a more resilient defense against cybercrime. Ultimately, sustained disruption campaigns can shift the economics of cybercrime, making it less profitable and more challenging for criminals to operate.