All Content

Mon, Mar 1, 2021

A primer on the proliferation of offensive cyber capabilities

Offensive cyber capabilities run the gamut from sophisticated, long-term disruptions of physical infrastructure to malware used to target human rights journalists. As these capabilities continue to proliferate with increasing complexity and to new types of actors, the imperative to slow and counter their spread only strengthens.

Issue Brief by Winnona DeSombre, Michele Campobasso, Dr. Luca Allodi, Dr. James Shires, JD Work, Robert Morgus, Patrick Howell O’Neill, and Dr. Trey Herr

Arms Control Conflict

Mon, Mar 1, 2021

Countering cyber proliferation: Zeroing in on Access-as-a-Service

The proliferation of offensive cyber capabilities (OCC) presents an expanding set of risks to states and challenges commitments to protect openness, security, and stability in cyberspace. Access as a Service firms offer various forms of “access” to target data or systems, and through these business practices are creating and selling OCC at an alarming rate. It is imperative that governments reevaluate their approach to countering the proliferation of OCC.

Report by Winnona DeSombre, James Shires, JD Work, Robert Morgus, Patrick Howell O’Neill, Luca Allodi, and Trey Herr

Arms Control Cybersecurity

Robert Morgus is a senior director for the US Cyberspace Solarium Commission. At the Commission, Morgus has led the development of the ecosystem pillar of the Commission’s final report and served as the lead writer for the Pandemic White Paper and the Supply Chain White Paper. Prior to his work for the Commission, he helped build New America’s Cybersecurity Initiative, where he headed the organization’s international cyber policy work.

While at New America, his research focused on mechanisms to counter the spread of offensive cyber capability, cybersecurity and international governance, and Russian internet doctrine. He has authored reports on international cybersecurity norms, internet governance, cybersecurity insurance, amongst others.

Morgus has spoken about cybersecurity at a number of international forums including NATO’s CyCon, the Global Conference on Cyberspace, and Cy Fy, amongst others. His research has been published and recognized by the New York Times, Slate, the IEEE, peer-reviewed academic journals, and numerous other national and international media outlets. Morgus serves as a member of the Research Advisory Network for the Global Commission on Internet Governance, as well as the Global Forum on Cyber Expertise, and has served as an expert advisor for the World Economic Forum.