National Policing Cybercrime Summit


Monday, October 19, 2015
7:30 am


Networking Breakfast
8:15 am

Opening Remarks

8:30–9:00 am

Opening Keynote Speaker

Matthew Torigian, Deputy Minister of Community Safety, Province of Ontario

Cybercrime is not a new phenomenon, but there is still a lot to learn in order to effectively respond to the threat. The nature of cybercrime continues to change faster than public institutions can fully understand them, regulate them and mobilize against them. Deputy Minister Matt Torigian will speak to the challenges posed by this type of crime, and discuss what the various levels of government need to consider if we are to collectively and successfully counter it.
9:00–9:30 am

Business E-mail Compromise – A Global Perspective

Joseph Yuhasz, Supervisory Special Agent, Federal Bureau of Investigations

This presentation will introduce the audience to one of the most prolific and damaging Cyber scams seen today. The business E-mail Compromise (BEC) scam primarily targets businesses of various sizes and affects countries all over the world. Although the BEC scam is primarily a sophisticated social engineering scam, the BEC scam has cost victims over $1 billion to date. To date, the FBI has identified at least four variations of the scam as well as a variation that primarily targets individuals.
9:30–10:15 am

Always change a winning team!

It's 2013: online payment systems are down for weeks because of massive DDoS attacks on Dutch banks. In 2014 the same banks lost billions and billions of Euro’s on Russian APT attacks. ATM’s seem to spontaneously spit out Euro’s that disappear into the pockets of money mules. It’s 2015 and things are really getting out of hand; small businesses are going bankrupt because they have been targeted by criminals who were able to alter their payments using Remote Access Trojans. Remco and Floor will draw a picture of what could have happened if Dutch banks and Law Enforcement Agencies would not have cooperated closely on the fight against cybercrime over the last years.

Remco Ruiter, Dutch Banking & Finance Liaison Officer, Dutch National Cyber Security Center; and Information Security Officer, Rabobank Group
Floor Jansen, Dutch National Police Liaison Officer, Dutch National Cyber Security Center; and Strategic Advisor, High Tech Crime Unit, Dutch National Police
10:15–10:45 am


10:45–11:15 am

Confronting Law Enforcement Cyber Threats: Assessing Risk, Building Resiliency, Managing Resources

David J. Roberts, Senior Program Manager, Technology Center, International Association of Chiefs of Police (IACP)

Law enforcement agencies and their personnel are increasingly being attacked by individuals, special interest groups, organized criminal enterprises, and even nation states. The attacks range from posting offensive material online to defacing websites, denial of service (DDOS) attacks, seizing and encrypting critical agency systems through the use of ransomware malware, identity theft, and evidence destruction. The challenge facing law enforcement is amplified as agencies enhance their online presence, increase their use of mobile devices, and expand the array of digital evidence generated through the growing adoption of body-worn cameras and other technologies. This session will include a discussion of key trends and issues, and feature an overview of the IACP Law Enforcement Cyber Center ( The Center is an online portal designed to address three principal areas: 1) cybercrime investigation, 2) digital evidence collection and management, and 3) information systems security. The objective is to focus on messaging and outreach activities to engage law enforcement practitioners and to channel users to emerging news, established training, technical assistance, investigative tools and support, and online resources with strategic partners, including the Canadian Association of Chiefs of Police.

CACP Global Studies Group – Collaborative Cybercrime Framework Study

Mark Patterson, A/Inspector, Duty Inspector Program Ottawa Police Service
Marie-Claude Arsenault, Royal Canadian Mounted Police
Doug Ross, Head, Technical Analysis Team ( Digital Forensic Labs), Royal Canadian Mounted Police
12:00–1:00 pm


1:00–1:30 pm

Challenge of Public Engagement

A panel featuring noted mainstream media and senior police executives discussing the current cultural and systemic barriers preventing the open and free exchange of cybercrime information with the public, and exploring the means by which these can potentially be overcome.

Dave Seglins, Reporter, Canadian Broadcast Corporation
1:30–2:00 pm

The Future of Cybercrime – positioning a law enforcement organization for the new paradigm

Paul Beesley, Superintendent, Director - Behavioural, Forensic and Electronic Services, Ontario Provincial Police
2:00 - 2:30 pm

The RCMP National Cybercrime Strategy

Jeff Adam, Chief Superintendent, Director General, National Technical Investigation Services, Royal Canadian Mounted Police

An overview of the Force’s national cybercrime strategy currently under development and the importance for input and consultation with those outside of the policing community.
2:30–2:45 pm


2:45–3:30 pm

Avid Life Media - Ashley Madison Hack

A discussion around the challenges in the investigative process, jurisdiction issues/concerns, technology challenges and other aspects related to this high-profile data and ID theft case.

Frank Skubic, Detective Sergeant (Case Manager)
John Menard, Detective (Intelligence Technological Crime Unit)
Bryce Evans, A/ Staff Superintendent, Toronto Police Service
3:30–4:15 pm

Cyberbullying: Issues and Opportunities for Law Enforcement

Cyberbullying consists of bullying behaviors perpetrated electronically, such as over the Internet or by text message. Addressing cyberbullying is increasingly becoming a police responsibility in Canada, the United States, and elsewhere. This panel will introduce attendees to current issues in cyberbullying prevention and response. Topics addressed include the challenges of police and governments responding to cyberbullying, the potential value of enhanced collaboration with relevant stakeholders, and innovative strategies and partnerships being used by Canadian police agencies and governments. Relevant data on youth technology use and the prevalence of cyberbullying will be provided.

Roger Merrick, Director, Public Safety Investigations, Public Safety & Security Division, Department of Justice – Nova Scotia
Ryan Broll, Dr., Assistant Professor of the Department of Sociology and Anthropology, University of Guelph
Staff Sergeant Tony Reeves, Halifax Regional Police Service
4:15-4:30 pm

Day 1 Wrap Up

6:00 pm

Cocktail Reception and Networking

Check-in starts at 5:45 p.m.
Reception ends at 9:00 p.m.

National Policing Cybercrime Summit


Tuesday, October 20, 2015
7:30 am


Networking Breakfast
8:30–9:00 am

Day 1 Summary and Setting the Stage for Town Hall Discussions – Norm Taylor

9:00–9:30 am

A Small Window Into the Future of Policing

Peter Sloly, Deputy Chief, Toronto Police Service

This will be a presentation on the impact of cyber/social/digital media on community policing. It will examine operational, financial, human resources and reputational impacts.
9:30–10:15 am

Big Data Analytics for the Generation of Cyber Threat Intelligence: NCFTA Canada Initiatives

In this talk, we discuss several collaborative projects that have been or are being executed at the National Cyber Forensics and Training Alliance (NCFTA) Canada for the generation of near-real-time cyber threat intelligence that can be used for the detection, analysis, mitigation, prevention and attribution of cyber attacks. In this respect, we will report on our experience with persisting, analyzing and cross-correlating various streams of information (Passive DNS, Darknet, Malware, Domains, etc.). We will share some of the insights gained as well as the lessons learned in the aforementioned collaborative projects. A large portion of the presentation will be a demonstration of the tools developed at NCFTA Canada.

Dr. Mourad Debbabi, President, NCFTA Canada
Michael Haring, Staff Sergeant, Royal Canadian Mounted Police
10:15–10:30 am


10:30–11:15 am

Forensic Analysis of Digital Evidence with the Durham Regional Police Electronic Crimes Unit

Members of the Durham Regional Police Electronic Crimes Unit will discuss Forensic Analysis as it relates to computers, cell phones and video surveillance. Attendees will be given a brief history of the field before being introduced to the latest techniques used to aid investigators in modern day policing. Presenters will discuss the limitations of current technologies and the ways they are attempting to overcome them.

Michael Russell, Detective Constable – Forensic Computer Analyst
Fraser Phillips, Forensic Cellular Phone Analyst
Erik Griffin, Forensic Audio/Video Analyst
Troy Phillips, Detective Constable, Durham Regional Police Service
11:15 - noon

Cybercrime: A Calgary Police Service Perspective

Speakers will provide a brief history on how and why the team was created; highlight the community, industry and law enforcement partnerships that have developed; talk about some of the specializations / services offered to support criminal investigations; provide an overview of a hacking / phishing / data breach investigation that recently concluded; and provide for a Q&A session.

Ryan Jepson, Staff Sergeant, Electronic Surveillance Unit, Calgary Police Service
Cory Dayley, Sergeant, Cybercrime Support Team, Calgary Police Service
12:00–1:00 pm


1:00–1:45  pm

Diamond Sponsor Presentation - NCI

1:45–2:45 pm

"What Do I Do" – Senior Law Enforcement led panel & townhall

Peter Sloly, Deputy Chief, Toronto Police Service
Scott Tod, Deputy Commissioner, Ontario Provincial Police
Jeff Adam, Chief Superintendent, Director General, National Technical Investigation Services, Royal Canadian Mounted Police
2:45–3:00 pm


3:00–4:00 pm

Bear Pit Session: What are we doing - what should we be doing?

Norm Taylor, Program Director and Co-Founder of the Canadian Association of Chiefs of Police (CACP) Executive Global Studies Program
4:00-4:30 pm

Closing Keynote Speaker

Peter Henschel, Deputy Commissioner, Specialized Policing Services, Royal Canadian Mounted Police

RCMP Deputy Commissioner Peter Henschel, Specialized Policing Services, will discuss cybercrime within the context of the 'Going Dark' problem, which refers to a continued decline in law enforcement's ability to collect digital evidence despite having obtained court authority to do so. This problem extends across a broad spectrum of investigative, technological and jurisdictional challenges, such as intercept gaps for electronic communications, and an inability to 'see' evidence that is concealed by encryption and related technologies. These and similar challenges - including links between the Going Dark problem and cybercrime, and an urgent need for civil society outreach - will form the basis of Deputy Commissioner Henschel's remarks.