Conflict is not shaped only by states but also those that develop, operate, and employ cyber-enabled capabilities and technologies for their own purposes. The Conflict, Risk, and Tech program explores the strategic risks created by non-state actors present in current conflicts, the relationships between key actors and capabilities, and the implications for technology, cyberspace, and international security writ large.

Featured Content

Proliferation of Offensive Cyber Capabilities

Cybercrime

Publications

Conflict, Risk, and Tech

Nov 4, 2024

Take the bribe but watch your back: Why Russia imprisoned a security officer for taking cybercriminal payoffs 

By Justin Sherman

Russia imprisoned a security service officer for taking bribes from cybercriminals—showing not a willingness to crack down on cybercrime, but instead just how much the Kremlin wants to maintain its cybercrime protection racket.

Cybersecurity Russia

Report

Sep 4, 2024

Mythical Beasts and where to find them: Mapping the global spyware market and its threats to national security and human rights

By Jen Roberts, Trey Herr, Nitansha Bansal, and Nancy Messieh, with Emma Taylor, Jean Le Roux, and Sopo Gelava

The Mythical Beasts project pulls back the curtain on the connections between 435 entities across forty-two countries in the global spyware market.

Cybersecurity

Conflict, Risk, and Tech

Sep 4, 2024

Mythical Beasts and where to find them: Data and methodology

By Jen Roberts, Trey Herr, Nitansha Bansal, and Nancy Messieh, with Emma Taylor, Jean Le Roux, and Sopo Gelava

Learn more about the methodology and dataset behind Mythical Beasts and where to find them: Mapping the global spyware market and its threats to national security and human rights

Cybersecurity

Report

Sep 4, 2024

Mythical Beasts and where to find them

By Jen Roberts, Trey Herr, Nitansha Bansal, and Nancy Messieh, with Emma Taylor, Jean Le Roux, and Sopo Gelava

Mythical Beasts and Where to Find Them: Mapping the Global Spyware Market and its Threats to National Security and Human Rights is concerned with the commercial market for spyware and provides data on market participants.

Cybersecurity

Report

Apr 22, 2024

Markets matter: A glance into the spyware industry

By Jen Roberts, Trey Herr, Emma Taylor, Nitansha Bansal

The Intellexa Consortium is a complex web of holding companies and vendors for spyware and related services. The Consortium represents a compelling example of spyware vendors in the context of the market in which they operate—one which helps facilitate the commercial sale of software driving both human rights and national security risk.

Civil Society Cybersecurity

Report

Nov 13, 2023

This job post will get you kidnapped: A deadly cycle of crime, cyberscams, and civil war in Myanmar

By Emily Ferguson and Emma Schroeder

In Myanmar, cybercrime has become an effective vehicle through which nonstate actors can fund and perpetuate conflict.

Cybersecurity Indo-Pacific

The 5×5

Sep 20, 2023

The 5×5—Bridging the divide: Cyber conflict in international relations

By Simon Handler

Researchers discuss the relationship between the cyber policy and academic communities, and share their advice for those interested in breaking into each community.

Cybersecurity National Security

The 5×5

Aug 21, 2023

The 5×5—Cloud risks and critical infrastructure

By Simon Handler

Experts share their perspectives on the challenges facing cloud infrastructure and how policy can encourage better security and risk governance across this critical sector.

Cybersecurity Infrastructure Protection

The 5×5

Aug 3, 2023

The 5×5—Cyber conflict in international relations: A policymaker’s perspective

By Simon Handler

Current and former policymakers address cyber conflict’s fundamental place in international relations, their recommended readings, and ideas for how policymakers and scholars can more effectively engage one another.

Cybersecurity National Security

Conflict, Risk, and Tech

Jun 28, 2023

Shaping the global spyware market: Opportunities for transatlantic cooperation

By Jen Roberts and Emmeline Nettles

The United States and its allies can do more to improve their position on spyware. Further policy action should, through greater collaboration with marketplace operators and allies and partners, work on furthering the development of norms and common understanding of what spyware can and cannot be used for.

Cybersecurity European Union

The Atlantic Council’s Cyber Statecraft Initiative, part of the Atlantic Council Technology Programs, works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.