The CyberPeace Institute in Action

CyberPeace Institute

The report that follows has been developed to showcase how the CyberPeace Institute would operate in response to, and in the wake of a significant cyber incident.

To illustrate how each of the Institute’s three functions would come into play once the organization is fully operational, this case study is built around a fictional global ransomware attack called “WreckWeb.” Based on several real world precedents, this fictional account walks the reader through each of the Institute’s functions from the perspectives of the individuals who would be tasked with leading the Institute’s efforts: assisting vulnerable victims, conducting attack analyses, and sharing their findings.

In order to capture the nature, scale and impact of such a global cyberattack, the report begins by highlighting in particular the consequences of the 2017 “NotPetya” attack and the gaps in the international response. While NotPetya was chosen as one prominent example, similar events take place with increasing frequency each passing year and underline the core mission of the Institute to operate in response to attacks that cause “significant and direct harm on civilians and/or civilian infrastructure.”


Disclaimer: For the purposes of this report, there are presumptions made about how particular individuals and organizations might engage with the work of the CyberPeace Institute. This is purely to illustrate how the Institute would operate, and is not meant to reflect actual commitments or obligations by third parties. The employees and activities of the CyberPeace Institute included in the report are also fictitious, but based on anticipated behaviors. Ultimately, this case study provides exemplary context for how we envision the CyberPeace Institute would partner with others, operate efficiently and effectively, and add unique value to the ecosystem going forward to support a more safe and secure cyberspace.


The CyberPeace Institute is an independent, non-profit organization with the mission to enhance the stability of cyberspace. It does so by supporting vulnerable communities, analysing attacks collaboratively, and advancing responsible behaviour in cyberspace.

© Copyright: The CyberPeace Institute

© Copyright 2023: The concepts and information contained in this document are the property of the CyberPeace Institute, an independent non-governmental organization headquartered in Geneva, unless indicated otherwise from time to time throughout the document. This document may be reproduced, in whole or in part, provided that the CyberPeace Institute is referenced as author and copyright holder.


Support the CyberPeace Institute

Individual lives can be changed dramatically by the acts of cyber criminals. We need your support to assist victims of cyberattacks in the NGO, humanitarian and healthcare sectors.


Subscribe to our newsletter

Receive monthly news on what’s happening at the Institute: our impact, publications, events and important milestones.