Issues

Cybersecurity Digital Policy Disinformation Extremism Internet Media Politics & Diplomacy Populism

Regions

United States and Canada
About Related Content

Events

Online Event Thu, April 25, 2024 • 1:30 pm ET

The Secure By Design Imperative: A One-Year Retrospective
Cybersecurity Technology & Innovation

All Content

Report

Mar 29, 2021

Broken trust: Lessons from Sunburst

By Trey Herr, Will Loomis, Emma Schroeder, Stewart Scott, Simon Handler, and Tianjiu Zuo

The story of trust is an old one, but the Sunburst cyber-espionage campaign was a startling reminder of the United States’ collective cyber insecurity and the inadequacy of current US strategy to compete in a dynamic intelligence contest in cyberspace.

Cybersecurity Intelligence

In the News

Jan 22, 2021

Loomis and Scott in Lawfare: A role for the vulnerabilities equities process in securing software supply chains

On Jan. 14, something unusual happened—the National Security Agency (NSA) publicly announced that it had discovered a critical vulnerability (CVE 2020-0601) deep within Windows 10 and reported it to Microsoft for patching. The disclosure was lauded because of the bug’s severity; buried in a cryptographic library, it would have allowed opportunistic attackers to decipher encrypted […]

Cybersecurity

In the News

Jan 11, 2021

Loomis and Scott in Lawfare: A role for the vulnerabilities equities process in securing software supply chains

On Jan. 14, something unusual happened—the National Security Agency (NSA) publicly announced that it had discovered a critical vulnerability (CVE 2020-0601) deep within Windows 10 and reported it to Microsoft for patching. The disclosure was lauded because of the bug’s severity; buried in a cryptographic library, it would have allowed opportunistic attackers to decipher encrypted […]

Cybersecurity
Load More

Stewart Scott is a deputy director with the Cyber Statecraft Initiative, part of the Atlantic Council Tech Programs. He works on the Initiative’s Cybersecurity, Strategy, and Policy portfolio, with focuses on software supply chain and open source software security policy. 

Scott earned his BA from Princeton University at the School of Public and International Affairs along with a minor in computer science. His course of study centered on misinformation, social media policy, online extremism, journalism, and American political and economic history. He joined the Atlantic Council after interning with its Cyber Statecraft Initiative.