banner
LightNews
cyberstatecraft.bsky.social
Cyber Statecraft Initiative
@cyberstatecraft.bsky.social
77 followers 9 following 190 posts
The Cyber Statecraft Initiative works at the nexus of geopolitics and cybersecurity to craft strategies to help shape the conduct of statecraft and to better inform and secure users of technology.
Posts Media Videos Starter Packs
Pinned
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 20d
The deadline to sign up your team for the inaugural Monterey #Cyber912 Strategy Challenge has been extended to Monday, October 13 at 11:59PM ET.

If you were thinking about organizing your dream team... consider this your sign! 🔮✨
 
Register here: form.jotform.com/Cyber_Statec...
a man speaking into a microphone with the words " this is your moment " above him
ALT: a man speaking into a microphone with the words " this is your moment " above him
media.tenor.com
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 40m
In his issue brief, fellow Robert Peacock highlights the oft-overlooked dimension of cybersecurity development - corruption in software acquisition practices. Read more here: www.atlanticcouncil.org/in-depth-res...
The impact of corruption on cybersecurity: Rethinking national strategies across the Global South
As the Global South prepares for the next stage in ICT development, governments must prioritize policies that reduce corruption in critical network software procurement to protect those countries'…
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 1d
With support from @BlackHatEvents.bsky.social for #Cyber912 winners, together, we’ve been providing conference passes and empowering students with access to cutting-edge cybersecurity insights and networking opportunities on a global scale.
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 1d
Take your next steps in cybersecurity at Black Hat Europe 2025! From specialized Trainings to insightful Briefings, ExCeL London is the place to be from Dec. 8-11 for all things cybersecurity! To learn more and register, visit www.blackhat.com/eu-25/
Black Hat Europe 2025
Black Hat Europe 2025
www.blackhat.com
1
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 1d
“Absent direct experience, all one can rely on is academic research”—cyber operations have never been used during a military crisis between two nuclear-armed states. What happens if this Rubicon is crossed? See this piece from Michael Fischerkeller:

www.atlanticcouncil.org/in-depth-res...
What do we know about cyber operations during militarized crises?
Policymakers must critically examine assumptions and claims that cyber operations can serve as de-escalatory crisis offramps.
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 2d
Despite bans and sanctions, spyware companies keep thriving—with US dollars. US firms are investing in tools that harm US interests. The Trump administration can counter this problem set. Learn how in: nationalinterest.org/blog/techlan...
Tackling the Spyware Crisis
Domestic investment in spyware is undermining national security at all levels of society.
nationalinterest.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 2d
This year at the 10th annual #Cyber912 in New York, we were joined by 20 teams representing 16 universities and colleges from across USA.

This year, teams tackled a high-stakes scenario where South China Sea tensions escalated into a global cyber crisis.
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 2d
And that’s a wrap!
Our final standings for the 2025 New York #Cyber912 are:

🥇Husky Hackers of @Northeasternu.bsky.social
🥈 Black Knights of USMA West Point
🥉Golden Mules of USMA West Point

Congratulations to all our teams and thank you to @ColumbiaSIPA.bsky.social
1
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 3d
⏳ Don’t miss your chance! Be part of the first-ever #Cyber912 Monterey Challenge happening on Nov 7–8, 2025, at MIIS. Step into a fast-paced cyber crisis simulation, and sharpen your strategy skills.
📝 Register by October 13, by 11:59PM ET: form.jotform.com/Cyber_Statec...
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 5d
For the 10th annual New York City #Cyber912 with @SIPAcyber, we were joined by 21 teams from 10 states...but only 11 can advance to the semifinal round.

Check out which teams made the cut and good luck to all our semifinalists! ⬇️
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 7d
The story gets even more complicated when you look at scorecard subchecks, where most funders see a strong correlation with better scores. Read more in the full report ⬇️ www.atlanticcouncil.org/content-seri...
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 7d
According to our O$$ report, funding with statistically significant increases in average Scorecard scores by ecosystem: 1️⃣ Python: GitHub Organizational, GitHub Individual, Tidelift, and Open Collective 2️⃣ npm: GitHub Organizational and Open Collective.
1
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 7d
Are improvements in the security posture of open source software projects different among sources of general funding? Our initial analysis of about 2000 open-source software packages suggests the answer might be vary across software ecosystems. 🚨🔐
1
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 16d
Wondering what could prevent another incident like the XZ backdoor? Aeva Black suggests “A healthy dose of caution–particularly for maintainers of low-level system libraries in widespread use–is needed.” Check out the 5x5 to read more:
The 5x5—The XZ backdoor: Trust and open source software
Open source software security experts share their insights into the XZ backdoor, and what it means for open source software security.
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 17d
@jshermcyber.bsky.social report "The Politics of Internet Security" dives into the geopolitics of the Internet, examines how governments exert influence to warp its shape, and argues why the US needs to be more active in building a safer, more secure Internet.
The politics of internet security: Private industry and the future of the web
The private sector plays a crucial role in defining the changing shape of the Internet, especially its security. This report examines two protocols as examples of private sector influence over…
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 20d
And for some OSS funding and security history, check out this article from CSI nonresident senior fellow John Speed Meyers and his coauthor, Jacqueline Kazil, in @bindinghook.bsky.social: bindinghook.com/articles-bin...
How to ‘harden’ open-source software - Binding Hook
Much of today's critical infrastructure and military systems rely on open-source software
bindinghook.com
1
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 20d
Does more money for open source software lead to better OSS security? Causality is always hard to show, but correlation is easy! Check out our issue brief here: www.atlanticcouncil.org/content-seri...
1 1
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 20d
The deadline to sign up your team for the inaugural Monterey #Cyber912 Strategy Challenge has been extended to Monday, October 13 at 11:59PM ET.

If you were thinking about organizing your dream team... consider this your sign! 🔮✨
 
Register here: form.jotform.com/Cyber_Statec...
a man speaking into a microphone with the words " this is your moment " above him
ALT: a man speaking into a microphone with the words " this is your moment " above him
media.tenor.com
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 20d
Securing AI means securing all of its data supply chain. This new framework helps policymakers & technologists see the full picture. Read the issue brief here: www.atlanticcouncil.org/in-depth-res...
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 21d
Our report, Design Questions in the Software Liability Debate, asks, "what do we agree about in software liability?" and "what do we still have left to figure out?" (Sneak peek: not much, and a lot!)
Design questions in the software liability debate
Software liability—resurgent in the policy debate since its mention in the 2023 US National Cybersecurity Strategy—describes varied potential structures to create legal accountability for vendors of…
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 21d
“There's still a disconnect in recognizing that cybersecurity is a foundational business risk and not a one-time, niche issue,” says Ayan Islam.

When it comes to workforce development, it takes investment at all levels!

See what other experts thought:
The 5×5—Strengthening the cyber workforce
Experts provide insights into ways for the United States and its allies to bolster the cyber workforce.
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 22d
The global spyware market is evolving 🌎 The second edition of the Mythical Beasts project details a resilient and expanding ecosystem of surveillance actors. Read more in: www.atlanticcouncil.org/in-depth-res...
Mythical Beasts: Diving into the depths of the global spyware market
The second edition of the Mythical Beasts project assess how the global spyware market has developed and changed over the past year.
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 22d
Shoring up open source software security is essential for advancing a more secure software ecosystem--it's open source all the way down!

Check out our report on policy to advance open source software security to see what policy can do ⬇️
www.atlanticcouncil.org/in-depth-res...
Avoiding the success trap: Toward policy for open-source software as infrastructure
Open-source software (OSS) sits at the center of almost every digital technology moving the world since the early 1980s—laptops, cellphones, widespread internet connectivity, cloud computing, social…
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 23d
Access-as-a-Service firms bypass arms control agreements like the Wassenaar Arrangement by hiring foreign nationals. Policymakers must understand this industry to shape and limit the spread of offensive cyber capabilities. More here: www.atlanticcouncil.org/in-depth-res...
Countering cyber proliferation: Zeroing in on Access-as-a-Service
It is imperative that governments reevaluate their approach to countering the proliferation of offensive cyber capabilities.
www.atlanticcouncil.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 23d
US investment not only funds these companies—it legitimizes them. More money. More talent. More risk to Americans. Overview of this issue set and how to combat it in:
Tackling the Spyware Crisis
Domestic investment in spyware is undermining national security at all levels of society.
nationalinterest.org
cyberstatecraft.bsky.social
Cyber Statecraft Initiative @cyberstatecraft.bsky.social · 24d
For the offensive cyber capabilities market there is a "lack of transparency, insight, and monitorability of this global ecosystem when compared to physical equivalents such as small arms, chemical and radiological weapons etc." writes Ollie Whitehouse in
Makings of the Market: Seven perspectives on offensive cyber capability proliferation
The marketplace for offensive cyber capabilities continues to grow globally. Their proliferation poses an expanding set of risks to national security and human rights, these capabilities also have…
www.atlanticcouncil.org