Cybersecurity

Recent analysis

Software supply chain security: The dataset

Report Jun 25, 2025

Crash (exploit) and burn: Securing the offensive cyber supply chain to counter China in cyberspace

By Winnona DeSombre Bernsen

If the United States wishes to compete in cyberspace, it must compete against China to secure its offensive cyber supply chain.

China Cybersecurity

New Atlanticist Jun 5, 2025

Cyberattacks are hurting US businesses. Here’s how Congress can upgrade cybersecurity information sharing.

By Tanner Wilburn, Sara Ann Brackett, and Urmita Chowdhury

Hackers are targeting small and medium-sized businesses, and the existing framework for sharing important information is leaving these US companies out of the loop.

Cybersecurity Economy & Business

Russia Tomorrow May 20, 2025

Unpacking Russia’s cyber nesting doll

By Justin Sherman

The latest report in the Atlantic Council’s Russia Tomorrow series explores Russia’s wartime cyber operations and broader cyber web.

Cybersecurity Digital Policy

Programs

The Atlantic Council Technology Programs comprises five existing efforts—the Digital Forensic Research Lab (DFRLab), the GeoTech Center, the Cyber Statecraft Initiative, the Democracy + Tech Initiative, and the Capacity Building Initiative. These operations work together to address the geopolitical implications of technology and provide policymakers and global stakeholders necessary research, insights, and convenings to address challenges around global technology and ensure its responsible advancement.

learn more

Content

Trackers and Data Visualizations

Jul 26, 2020

Software supply chain security: The dataset

By Will Loomis, Stewart Scott, Trey Herr, Sara Ann Brackett, Nancy Messieh, and June Lee

Want to dive deeper into the Breaking Trust database? You have come to the right place.

Cybersecurity
Technology & Innovation

Feature

Jul 26, 2020

App stores in focus

By Trey Herr, June Lee, Will Loomis, and Stewart Scott

App stores and hubs are a popular target for software supply chain attacks on large numbers of users, exploiting trust in proprietary app ecosystems and the security of storefronts like Play Store and App Store.

Cybersecurity
Technology & Innovation

Feature

Jul 26, 2020

Deep impact: States and software supply chain attacks

By Trey Herr, June Lee, Will Loomis, and Stewart Scott

States have used software supply chain attacks to great effect. Hijacked updates have routinely delivered the most crippling state-backed attacks, thanks in part to a continued failure to secure the code-signing process.

China
Cybersecurity

Report

Jul 26, 2020

Breaking trust: Shades of crisis across an insecure software supply chain

By Dr. Trey Herr, William Loomis, Stewart Scott, June Lee

Software supply chain security remains an under-appreciated domain of national security policymaking. Working to improve the security of software supporting private sector enterprise as well as sensitive Defense and Intelligence organizations requires more coherent policy response together industry and open source communities.

Cybersecurity
Defense Technologies

In the News

Jul 24, 2020

The geopolitics of digital identity: Dr. David Bray and Lord Tim Clement Jones

By Atlantic Council

Lord Tim Clement Jones, Geotech fellow, and Dr. David Bray, director of the Geotech Center, discussed the issue of digital identity in a recent event at the IdentityNorth Summit. Lord Jones pointed out how technologies for securely connecting an individual’s digital presence to their identity are not new, but have yet to be applied at a national scale, or in a universal manner that would be necessary to maximize their impact. He recognized, though, that certain applications of digital identity technology might be of concern to ordinary people; though he might be comfortable using his digital identity as part of the United Kingdom Parliament’s new system for MPs to vote, the average citizen might take concern with their votes being tabulated digitally, or being connected to other facets of their online identity.

Cybersecurity
Digital Policy

Conflict, Risk, and Tech

Jul 22, 2020

Troubled vision: Understanding recent Israeli–Iranian offensive cyber exchanges

By JD Work and Richard Harknett

Reported Iranian intrusions against Israeli critical infrastructure networks and alleged Israeli actions against Iranian proliferation-associated targets pose substantial new challenges to understanding ongoing competition and conflict in the Middle East.

Cybersecurity
Iran

In the News

Jul 20, 2020

Sherman interviewed on Cornell Law School’s “A Law in Common” podcast on the US-India tech relationship

Cybersecurity
Defense Technologies

New Atlanticist

Jul 20, 2020

Nine cyberattacks that will remind you of your ex

By Safa Shahwan Edwards

Just as you should be wary of reconnecting with someone who should probably be left in the past, keep an eye out for an increase in cyber incidents. In preparation for the very real possibility of exes coming out of the woodwork and cyber incidents making the news, we’ve identified nine cyberattacks that will remind you of your ex.

Cybersecurity

In the News

Jul 17, 2020

Sherman quoted in WIRED about the Trump administration’s discussed ban on TikTok

Cybersecurity
Internet

In the News

Jul 16, 2020

Sherman quoted in Mic.com about the Trump administration’s discussed ban on TikTok

Cybersecurity
Internet

Experts

Fellow

Andrea Rigoni

Nonresident Senior Fellow

Scowcroft Center for Strategy and Security Transatlantic Security Initiative

Cybersecurity Digital Policy

Fellow

Trevor H. Rudolph

Nonresident Senior Fellow

GeoTech Center

Cybersecurity Europe & Eurasia

Fellow

Martin Zuber

Senior US Navy Fellow

Forward Defense Scowcroft Center for Strategy and Security

Artificial Intelligence Cybersecurity

Fellow

Nadia Farra

Nonresident Senior Fellow, Syria Project

Rafik Hariri Center & Middle East programs

Cybersecurity Defense Technologies

Fellow

Mike Minihan

Distinguished Fellow

Indo-Pacific Security Initiative Scowcroft Center for Strategy and Security

Artificial Intelligence China

Fellow

Randi Charno Levine

Distinguished Fellow

Scowcroft Center for Strategy and Security Transatlantic Security Initiative

Cybersecurity Economy & Business

Events

Public Event Mon, January 26, 2026 • 10:00 am ET

AI’s market math: Scarcity, scale, and the deals for value

Artificial Intelligence Cybersecurity

Share

Issue briefs and reports

Fast Thinking

Dispatches

Inflection Points

UkraineAlert

MENASource

Econographics

Cybersecurity

Recent analysis

Crash (exploit) and burn: Securing the offensive cyber supply chain to counter China in cyberspace

Cyberattacks are hurting US businesses. Here’s how Congress can upgrade cybersecurity information sharing.

Unpacking Russia’s cyber nesting doll

Programs

Content

Software supply chain security: The dataset

App stores in focus

Deep impact: States and software supply chain attacks

Breaking trust: Shades of crisis across an insecure software supply chain

The geopolitics of digital identity: Dr. David Bray and Lord Tim Clement Jones

Troubled vision: Understanding recent Israeli–Iranian offensive cyber exchanges

Sherman interviewed on Cornell Law School’s “A Law in Common” podcast on the US-India tech relationship

Nine cyberattacks that will remind you of your ex

Sherman quoted in WIRED about the Trump administration’s discussed ban on TikTok

Sherman quoted in Mic.com about the Trump administration’s discussed ban on TikTok

Experts

Andrea Rigoni

Trevor H. Rudolph

Martin Zuber

Nadia Farra

Mike Minihan

Randi Charno Levine

Events

AI’s market math: Scarcity, scale, and the deals for value

Oops...

It looks like we're having a technical issue.