Highlighted content

In-Depth Research & Reports

In-Depth Research & Reports Oct 4, 2021

A system of systems: Cooperation on maritime cybersecurity

By William Loomis, Virpratap Vikram Singh, Dr. Gary C. Kessler, Dr. Xavier Bellekens

The MTS is not monolithic; it is a markedly complex “system of systems.” This section segments the MTS into three discrete systems—ships, ports, and cargo—each with its own life cycle, in order to highlight areas of risk and leverage for policy makers and the industry.
Cybersecurity Maritime Security
In-Depth Research & Reports

Report Mar 29, 2021

Broken trust: Lessons from Sunburst

By Trey Herr, Will Loomis, Emma Schroeder, Stewart Scott, Simon Handler, and Tianjiu Zuo

The story of trust is an old one, but the Sunburst cyber-espionage campaign was a startling reminder of the United States’ collective cyber insecurity and the inadequacy of current US strategy to compete in a dynamic intelligence contest in cyberspace.
Cybersecurity Intelligence
In-Depth Research & Reports

Report Aug 31, 2020

Four myths about the cloud: The geopolitics of cloud computing

By Trey Herr

Cloud computing providers are more than companies—they govern vast utility infrastructure, play host to digital battlefields, and are magnificent engines of complexity. Cloud computing is embedded in contemporary geopolitics; the choices providers make are influenced by, and influential on, the behavior of states. In competition and cooperation, cloud computing is the canvas on which states conduct significant political, security, and economic activity.
Cybersecurity Internet

All in-depth research & reports

Issue Brief

Sep 10, 2025

Mythical Beasts: Diving into the depths of the global spyware market

By Sarah Graham, Jen Roberts, and Nitansha Bansal

The second edition of the Mythical Beasts project assess how the global spyware market has developed and changed over the past year.

Cybersecurity

Issue Brief

Sep 5, 2025

Securing data in the AI supply chain  

By Justin Sherman

To avoid lopsided AI policy, policymakers must see the data used and generated by AI as a chain, not a snapshot.

Artificial Intelligence Cybersecurity

Report

Jul 30, 2025

To secure reprogrammable chips, the US must address supply chain risks

By Andrew Kidd, Celine Lee, and Bruce Schneier

This policy brief analyzes the FPGA supply chain for US firms and the trade-offs these companies make among risks to cost, availability, and security; assesses how those trade-offs will change given a shifting global environment; and recommends policy interventions for the US government.

China Cybersecurity

Report

Jul 30, 2025

The journey of reprogrammable semiconductors through their supply chain

By Andrew Kidd, Celine Lee, and Bruce Schneier

This interactive offers a concise overview of the nuances that make the FPGA supply chain uniquely challenging.

China Cybersecurity
Blurred photo of a malware sample in the Ghidra reverse engineering

Report

Jun 25, 2025

Crash (exploit) and burn: Securing the offensive cyber supply chain to counter China in cyberspace 

By Winnona DeSombre Bernsen

If the United States wishes to compete in cyberspace, it must compete against China to secure its offensive cyber supply chain.

China Cybersecurity

Report

Jun 20, 2025

A guide to national security space trends in the GCC

By AzurX and Graham Brookie

AzurX provides a comprehensive picture of the innovative strategies, ambitious missions, and inspiring visions propelling GCC nation space programs to new heights.

Space Space Security

Issue Brief

Jun 11, 2025

Reprogramming the future: The specialized semiconductors reshaping the global supply chain

By Celine Lee, Andrew Kidd, and Bruce Schneier

Within three years, Chinese investments in a critical and specialized type of semiconductor—field-programmable gate arrays (FPGAs)—are likely to drive many US firms out of the market. To counter this, the United States will need to significantly increase its own investment efforts.

China Technology & Innovation

Russia Tomorrow

May 20, 2025

Unpacking Russia’s cyber nesting doll

By Justin Sherman

The latest report in the Atlantic Council’s Russia Tomorrow series explores Russia’s wartime cyber operations and broader cyber web.

Cybersecurity Digital Policy

Report

May 6, 2025

Counting the costs: A cybersecurity metrics framework for policy

By Stewart Scott

Improved cybersecurity metrics can unlock more efficient policy and give policymakers a better sense of how they are faring at improving security.

Cybersecurity

Report

Sep 4, 2024

Mythical Beasts and where to find them: Mapping the global spyware market and its threats to national security and human rights

By Jen Roberts, Trey Herr, Nitansha Bansal, and Nancy Messieh, with Emma Taylor, Jean Le Roux, and Sopo Gelava

The Mythical Beasts project pulls back the curtain on the connections between 435 entities across forty-two countries in the global spyware market.

Cybersecurity
Load More

The Atlantic Council’s Cyber Statecraft Initiative, part of the Atlantic Council Technology Programs, works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.

learn more