Lawfare's biweekly roundup of U.S.-China technology policy and national security news.
Latest in Cybersecurity
As cyber threats during the coronavirus pandemic increase, Congress has considered allowing private lawsuits against foreign states for alleged unauthorized cyber activity. This response would create more problems than it solves.
The Cyber Solarium Commission’s new white paper explores what the coronavirus can teach us about how to prepare for a major cyber attack. But it also highlights cybersecurity principles that would have been and are relevant to responding to the current pandemic.
A recent executive order on the bulk electric power system signals that still-in-progress efforts to ban Chinese-made telecommunications equipment from U.S. networks may represent a new approach to critical infrastructure security more broadly.
On May 13, the Cyber Solarium Commission made its case to Congress that the U.S. should adopt a strategy of layered cyber deterrence.
Evaluating various approaches to cyber risk quantification can help inform the development of a public standard for measuring cybersecurity.
There are long-overlooked dangers embedded within the adoption of digital technologies—and as society shifts online during the pandemic, consumers and policymakers must figure out how to address those risks.
Many legal questions arose after the recent cyber operations against the health sector throughout the world, but there is still little legal conversation at the international level on how to approach these malicious acts that often have dire consequences.
A bipartisan group of senators sent a letter to the heads of the Cybersecurity and Infrastructure Security Agency (CISA) and U.S. Cyber Command on Apr. 20 asking them to take more measures to prevent cyberattacks against the American healthcare sector. In recent weeks, Russian, Chinese, Iranian and North Korean hacking operations have targeted hospitals and other health institutions using the coronavirus as a lure, according to the senators.
The U.S. Department of Justice Cybersecurity Unit released a document outlining legal considerations for private practitioners gathering intelligence on cyberthreats, including through retrieving stolen data or obtaining malware samples.
You can read the document here and below: