Cybersecurity

Haring & Wilson in The Washington Post: Why are the Russians pranking Washington think tanks?

By Atlantic Council

Sherman and Herr in Council on Foreign Relations: the US should make “leverage” the foundation of its cyber strategy

The SolarWinds incident spurred a flurry of debates about whether the U.S. Department of Defense’s 2018 “defend forward” strategy should, or could, have prevented the calamity. Putting aside that the Russian operation was cyber espionage—stealing data rather than denying, disrupting, degrading, or destroying systems—some of these arguments reflected an idea that the United States should […]

Handler and Sherman in the National Interest: The United States needs a public strategy for deterring disinformation

By Atlantic Council

To give the disinformation threat the credence it deserves, the government must create a public strategy on combating disinformation, with deterrence as a main component.

Forscey in Lawfare: the cyber regulators are coming for the cloud

Today’s cloud computing industry is as important as it is complicated, a critical and opaque sector that undergirds the economy but that few people truly understand. Cloud services have become a pillar of digital society, supporting nonstop innovation. They also create interdependencies that generate a wellspring of concentrated risk. Ensuring that the various subsectors of […]

John in Dark Reading: SolarWinds a catalyst for change and a cry for collaboration

The Sunburst campaign, which includes the SolarWinds incident, is not unique in its type or frequency. Supply-chain attacks have been happening more often over the past seven or so years. As adversaries continue to rapidly identify vulnerabilities, coupled with the world’s increased reliance on digital connectivity, we face mounting challenges in preventing, detecting, and responding […]

Warrick in The Telegraph on Cyber Appointment

By Atlantic Council

On April 12, Forward Defense Nonresident Senior Fellow Thomas S. Warrick was quoted in an article in The Telegraph. The article focused on the appointment of new cyber officials in the Biden administration, with Warrick giving some context about the background of Jen Easterly, tapped to run the Cybersecurity and Infrastructure Security Agency.

Warrick quoted in the Washington Post on new CISA leadership

Borghard in Russia Matters: Punitive response to SolarWinds would be misplaced, but cyber deterrence still matters

By Atlantic Council

On March 31, Erica Borghard published an article in Harvard Kennedy School’s Russia Matters on the appropriate response to the SolarWinds breach. She argues that a retaliatory option would be unwise, but that this does not mean that deterrence strategies are irrelevant for cyberspace. “A punitive response to SolarWinds is unwise because the available evidence […]