POPULARITY
Sean Wiswesser, author of the new book, “Tradecraft, Tactics, and Dirty Tricks: Russian Intelligence and Putin's Secret War,” and a former senior operations officer with the CIA, joins Lawfare's Justin Sherman to discuss the major Russian security organs and their training, characteristics of Russian “sticks-and-bricks” surveillance and counter-surveillance tradecraft, and the Russians' use of coercion, kompromat, and sex (often dubbed “sexpionage”) to recruit and pressure people. They also discuss corruption in the Russian intelligence services, illegals and assassination programs, brazenness and sloppiness in Russian operations, and the future of the Russian intelligence threat to the United States and the West.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Candace Rondeaux, the founder and principal of Frontline Atlas, an independent geopolitical risk intelligence hub; a professor with the Future Security Initiative at Arizona State University; and a senior fellow in global security at New America joins Lawfare's Justin Sherman to discuss the latest geopolitics, operations, and state of Russian private military companies (PMCs). They discuss the current state of Russia's Wagner Group and other Russian PMCs, their roles in recruitment of people to fight for Russia against Ukraine and the operation of Russia's shadow fleet, and touchpoints with Iranian actors. They also discuss Russian PMC activities in Mali; how recent setbacks on the African continent might blow back on the chain of command, including Russian government actors; a recent legal case in the African court of human rights; and what steps the United States might take to better address Russian PMCs' security threats.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Justin Sherman, the founder of Global Cyber Strategies, a nonresident senior fellow at the Atlantic Council's Cyber Statecraft Initiative, and the author of the book “Navigating Technology and National Security” joins Defense & Aerospace Report Editor Vago Muradian to discuss the cyber aspects of the Trump administration's 2027 federal spending request, changes lawmakers should consider to improve cyber security, impact of new AI models like Anthropic's Mythos on improving cyber defenses, the administration's interest in testing AI models before their release and how such tests should be conducted, and growing role of AI in warfare and the government's oversight over contractors during military operations.
Running for federal office now comes with security costs that were once rare and those costs are rising fast. A new analysis looks at how the growing need for personal and digital security is changing who can realistically run for office, and how campaigns operate behind the scenes. We'll talk through what that shift means for access, participation, and the health of democratic institutions, with Justin Sherman of the Public Service Alliance.See Privacy Policy at https://art19.com/privacy and California Privacy Notice at https://art19.com/privacy#do-not-sell-my-info.
Tom Kemp, executive director of the California Privacy Protection Agency (CPPA), joins Lawfare's Justin Sherman to discuss California's new Delete Request and Opt-out Platform, or DROP system, the data broker industry, and California's ongoing efforts to ensure residents can effectuate their privacy rights. They also discuss the process and impacts of bringing technologists into public service at privacy and cybersecurity regulatory bodies, inter-state collaboration on data privacy issues, how California thinks about concerns around U.S. foreign adversaries and risks of access to U.S. persons' data, and the near-term and over-the-horizon privacy risks to consumers.Additional Resources:California Delete Request and Opt-Out Platform (DROP)California Data Broker RegistryCalifornia Consumer Privacy Act (CCPA)To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Lawfare Book Review Editor Jonathan Cedarbaum sits down with Justin Sherman, the CEO of Global Cyber Strategies, to discuss his new book, "Navigating Technology and National Security: The Intersection of CFIUS, Team Telecom, AI Controls, and Other Regulations," in which Sherman describes and assesses the proliferation of U.S. regulatory programs designed to guard against national security risks arising from transactions involving technology and data.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Andy Grotto, William J. Perry International Security Fellow and the founder and co-director of the Program on Geopolitics, Technology, and Governance at Stanford University's Center for International Security and Cooperation (CISAC), and Jim Dempsey, a senior policy adviser to that program and a Lecturer at the UC Berkeley Law School, join Lawfare's Justin Sherman to discuss their recent study on the U.S. military's domestic operational technology (OT) cybersecurity vulnerabilities, domestic installations' dependencies on critical infrastructure both “inside the fence” and “outside the fence,” and how U.S. adversaries could exploit the flaws. They also discuss the myth of the air gap; the Pentagon's Energy Resilience Program; the role that standards, regulations, and procurement could play in strengthening the cybersecurity of OT systems on which the military depends; and what the threat landscape will look like in the coming years.Resources:James X. Dempsey and Andrew J. Grotto, “Ensuring the Cyber Resilience of Critical Infrastructure Serving Domestic Military Installations: Questions for Senior Leadership,” The Cyber Defense Review 10, no. 2 (2025): 115-138Jim Dempsey and Andrew J. Grotto, “The Pentagon's Operational Technology Problem,” Lawfare, December 15, 2025To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Many of today's conversations about AI and emerging technologies are increasingly driven by questions about national security. These conversations are the latest in a longstanding debate over how the government uses a complex set of regulatory tools to protect critical technologies. In this episode, co-host Nicol Turner Lee is joined by Justin Sherman to discuss these patterns and his new book, “Navigating Technology and National Security.” Hosted on Acast. See acast.com/privacy for more information.
On today's Technology Report podcast, sponsored by Elbit America, Justin Sherman, the founder of Global Cyber Strategies advisory firm and a nonresident fellow at the Atlantic Council's Cyber Statecraft Initiative, joins Defense & Aerospace Report Editor Vago Muradian to discuss his new book, “Navigating Technology and National Security: The Intersection of CFIUS, Team Telecom, Al Controls, and Other Regulations,” that surveys America's export control history for lessons to shape controls that are more effective against China and a new generation of technologies.
Sarah Powazek, Director of the Public Interest Cybersecurity Program at UC Berkeley's Center for Long-Term Cybersecurity, and Michael Razeeq, Nonresident Fellow at the Public Interest Cybersecurity Program, join Lawfare's Justin Sherman to discuss the cyber threats facing states, what options and resources states currently have to address cybersecurity problems, and how the concept of state cyber corps and volunteer programs fits into the picture. They also discuss how states can stand up a cyber corp or volunteer program, including recruiting and retaining talent; the impact of federal workforce and spending cuts on states' cybersecurity capacities; and what future state and federal action on cybersecurity could do to improve states' cyber postures.For more on this topic, see:Sarah Powazek and Grace Menna, “The Roadmap to Community Cyber Defense,” June 2025, UC Berkeley Center for Long-Term CybersecurityCyber Resilience Corps websiteTo receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Erie Meyer, Senior Fellow at Georgetown Law's Institute for Technology Law & Policy and Senior Fellow at the Vanderbilt Policy Accelerator, and Laura Edelson, Assistant Professor of Computer Science at Northeastern University, who are coauthors of the recent toolkit, “Working with Technologists: Recommendations for State Enforcers and Regulators,” join Lawfare's Justin Sherman to discuss how state enforcers and regulators can hire and better work with technologists, what technologists are and are not best-suited to help with, and what roles technologists can play across the different phases of enforcer and regulator casework. They also discuss how to best attract technologists to enforcement and regulation jobs; tips for technologists seeking to better communicate with those lawyers, compliance experts, and others in government with less technology background; and how this all fits into the future of AI, technology, and state and broader regulation.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
From January 19, 2024: Last week, the Federal Trade Commission (FTC) reached a settlement with location data broker X-Mode Social. X-Mode collects over 10 billion location data points from all over the world every day, and sells it to clients in a range of industries, like advertisers, consulting firms, and private government contractors. The FTC argued that the data broker was conducting unfair business practices, including selling people's sensitive location data.To discuss the FTC settlement and its implications, Lawfare's Fellow in Technology Policy and Law Eugenia Lostri sat down with Justin Sherman, Founder and CEO of Global Cyber Strategies and a Senior Fellow at Duke University's Sanford School of Public Policy. They talked about the FTC's groundbreaking decision to list sensitive locations about which X-Mode cannot sell data, the likelihood that we will see further FTC action against data brokers, and the persistent need for comprehensive privacy legislation to better address harms.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Jen Roberts, Associate Director of the Atlantic Council's Cyber Statecraft Initiative, and Sarah Graham, Research Consultant with the Atlantic Council's Cyber Statecraft Initiative, who are coauthors along with Nitansha Bansal of the recent paper, “Mythical Beasts: Diving Into the Depths of the Global Spyware Market,” join Lawfare's Justin Sherman to discuss the global spyware industry, how it has evolved in recent years, and what its future holds. They also discuss the geographic concentration of key spyware entities in several countries; a rise in U.S. investors in the spyware industry; how “strategic jurisdiction hopping,” name changes, and corporate structure shifts impact spyware firms' evolution and transparency into their activities; and how U.S. policymakers should approach the global spyware market going forward.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Gavin Wilde, Nonresident Fellow at the Carnegie Endowment for International Peace, adjunct lecturer at Johns Hopkins University, and author of the recent paper, “Pyrite or Panic? Deepfakes, Knowledge and the Institutional Backstop,” joins Lawfare's Justin Sherman to discuss worries about deepfakes and their impact on information and society, the history of audiovisual media and what we can learn from previous evolutions in audiovisual technologies, and the role that fakery has played over the centuries in said media. They also discuss the social media and political context surrounding deepfake evolutions circa 2015; what happened, or not, with deepfakes in elections around the globe in 2024; and how institutions, policy, and law might pursue a less technology-centric approach to deepfakes and their information impacts.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Matthew Ford, Associate Professor at Swedish Defence University and author of “War in the Smartphone Age: Conflict, Connectivity, and the Crises at Our Fingertips,” joins Lawfare's Justin Sherman to discuss the role of smartphones and related technologies in war, how social media contributes to a collapse of context in the war content we see online, and how smartphones and other devices are reshaping open-source intelligence (OSINT) and open-source investigations (OSINV) vis-a-vis conflicts and violence from Syria to Ethiopia to Ukraine. They also discuss the tech stack in war, how the military “kill chain” is evolving with ever-greater digital connectivity, the current state and future of “participatory warfare,” and how we can become better consumers—and sharers—of war-related content online.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Adam Chan, National Security Counsel at the Federal Communications Commission (FCC) and inaugural Director of the FCC's new Council on National Security, joins Lawfare's Justin Sherman to discuss the FCC's rulemaking on submarine cables and national security. They discuss the FCC's new submarine cable rules, the role of submarine cables in the U.S. telecommunications supply chain and in the data and AI era, and the national security risks facing submarine cable infrastructure. They also discuss new requirements for submarine cable license applicants to make physical security and cybersecurity certifications, the objective of limiting Chinese influence on U.S.-tied submarine cables, and the future of how the FCC is thinking about threats, responses, and engagement with industry to address them.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
On today's Technology Podcast, sponsored by Elbit America, Justin Sherman, the founder of Global Cyber Strategies advisory firm and a nonresident fellow at the Atlantic Council's Cyber Statecraft Initiative, joins Defense & Aerospace Report Editor Vago Muradian to discuss his new report for the Center for Naval Analyses — “Hacking and Firewalls Under Siege: Russia's Cyber Industry During the War on Ukraine (https://www.cna.org/reports/2025/08/Hacking-and-Firewalls-Under-Seige.pdf)” — the nature of the cyber war between Russia and Ukraine; the role of Russian state, corporate and general public actors in advancing Moscow's tactical and strategic aims from offensive cyber actions to hacking and information operations; the government's role in controlling these actors; how many have been sanctioned; the impact of Kaspersky's role in support of the Russian government and how that's impacting the company's global business; analysis of Russia's “Secret Blizzard” operation against foreign embassies by exploiting a Microsoft vulnerability; cyber lessons from Ukraine as it defends itself against Russia; and happens to efforts to counter Russian in cyberspace when Washington normalizes relations with Moscow.
Sam Bresnick, Research Fellow and Andrew W. Marshall Fellow at Georgetown's Center for Security and Emerging Technology (CSET), joins Lawfare's Justin Sherman to discuss his recently published report, “Big Tech in Taiwan: Beyond Semiconductors.” They discuss a previous report Sam coauthored with Georgetown CSET colleagues, “Which Ties Will Bind?,” looking at U.S. Big Tech companies' exposure to China; Sam's recent report on the 17 examined companies' Taiwan entanglements; and how greenfield foreign direct investments (FDI), research and development (R&D) centers, data centers, supply chains, and more expose the studied U.S. companies to Taiwan. They also discuss how companies think about the geopolitical and security threat space, perspectives on “derisking” versus “decoupling” from Taiwan or China, and how U.S. policymakers could better track, identify, and potentially mitigate the risks.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Candace Rondeaux, Senior Director of New America's Future Frontlines program, Director of its Planetary Politics initiative, and professor of practice at Arizona State University joins Lawfare's Justin Sherman to discuss her recently published book, "Putin's Sledgehammer: The Wagner Group and Russia's Collapse into Mercenary Chaos." They discuss Yevgeny Prigozhin and his founding of the Wagner Group, the Russian private military company (PMC); his rise, ranging from post-Soviet 1990s Russia to growing relationships with Putin and other power figures; and Wagner's role in Russia's 2014 illegal annexation of Crimea and other Russian objectives abroad. They also discuss Wagner and Russia's full-scale invasion of Ukraine in 2022, Prigozhin's “march on Moscow” in 2023 and his subsequent death, the research techniques that go into studying a group like Wagner, and what role PMCs will play in the future of Russian power.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Max Smeets, Co-Director of Virtual Routes and Senior Researcher at ETH Zurich, joins Lawfare's Jonathan Cedarbaum and Justin Sherman to discuss his recently released book “Ransom War: How Cybercrime Became a Threat to National Security.” They discuss the history of ransomware (including the term itself), how the threats have evolved over the years, and some of the major drivers of innovation and entrepreneurialism within the ransomware ecosystem. They discuss Max's findings on the “trust paradox” facing ransomware groups, the internal business dynamics of ransomware gangs, how governments leverage ransomware operators to their own ends, and how the United States and Europe can respond to future threats.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Global Cyber Alliance's President and CEO Phil Reitinger and Chief Business Officer Komal Bozaz-Smith discuss with Justin Sherman critical cybersecurity issues facing core internet infrastructure, including the role of small, often under-appreciated, and frequently underfunded nonprofits in keeping the internet secure and functioning. They talk about their organization's Common Good Cyber project (video here) to address gaps, detail how better data could help inform internet security efforts, and talk about how the current landscape is shifting internet security into the future.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/lawfare-institute.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
In this episode of the Power Vertical Podcast, Justin Sherman joins host Brian Whitmore to unpack the complex ecosystem behind Russia's offensive cyber operations. From government agencies like the GRU and SVR to loosely affiliated cybercriminals and patriotic hackers, Sherman explores how these entities operate—often independently, yet in alignment with state interests.
Justin Sherman, the founder of Global Cyber Strategies advisory firm and nonresident fellow at the Atlantic Council's Cyber Statecraft Initiative, joins Defense & Aerospace Report Editor Vago Muradian to discuss why it's important to ban TikTok, the supply chain questions raised by the Chinese social media app; what makes similar apps problematic from a security standpoint and what needs to happen to address known vulnerabilities; whether the sale of the US side of TikTok solves the problem; some cyber priorities for the incoming administration; why curtailing cyber regulation will undermine collective security at a time when adversaries are stepping up their cyber game and penetrating critical US and allied communications and other networks; how to counter Russian and Chinese operations to disrupt critical undersea infrastructure; and ways to increase the production of cyber talent.
In this episode, Erik sits down with Justin Sherman, one of MLB's Youth Ambassadors for the Play Ball Initiative and president of JustinTime Baseball. Justin shares his passion for teaching young children the fundamentals of baseball through his innovative coaching programs. From overcoming his own speech challenges to building a successful baseball instruction enterprise that serves over 3,000 kids across 13 little leagues, Justin reveals how empathy and understanding are key to connecting with young players. The conversation explores the importance of proper youth coaching, working with parent coaches, and features stories about collaboration with baseball legends like Doc Gooden and Paul O'Neill. Along the way, Justin shares his vision for expanding JustinTime Baseball's methodology nationwide to help develop the next generation of baseball players and fans.
As part of Lawfare's Security by Design Project, Eugenia Lostri, Lawfare's Fellow in Technology Policy and Law, and Justin Sherman, CEO of Global Cyber Strategies, published a new paper, “Security by Design in Practice: Assessing Concepts, Definitions and Approaches.” Lawfare Senior Editor Stephanie Pell talked with Eugenia and Justin about the paper's exploration of the meaning of security by design, scalability solutions and processes for implementing security by design principles across an organization, and the need to engender a corporate culture that values security.To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/c/trumptrials.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Justin Sherman, the founder of Global Cyber Strategies advisory firm and nonresident fellow at the Atlantic Council's Cyber Statecraft Initiative, discusses the new report he authored — “Russia's Digital Tech Isolationism: Domestic Innovation, Digital Fragmentation, and the Kremlin's Push to Replace Western Digital Technology” — how Moscow uses its digital technology for global advantage, impact of sanctions that have driven a rise in domestic capability and greater partnership and reliance on China, the global market for Russian and Chinese digital technologies among nations that want to operate outside US and Western sanctions, how to counter Russian dis and misinformation, and outlook for social media regulation in Washington with Defense & Aerospace Report Editor Vago Muradian.
Last year saw a record number of healthcare hacks with more than 700 separate incidents. And with a subsidiary of United Healthcare forking over a $22 billion ransom this year, the problem isn't going away. With so much sensitive personal information on file, why aren't hospitals and their ilk better prepared? Guest: Dina Carlisle, president of the local nurses union, OPEIU 40 in Michigan. Justin Sherman, CEO of Global Cyber Strategies. Want more What Next TBD? Subscribe to Slate Plus to access ad-free listening to the whole What Next family and all your favorite Slate podcasts. Subscribe today on Apple Podcasts by clicking “Try Free” at the top of our show page. Sign up now at slate.com/whatnextplus to get access wherever you listen. Learn more about your ad choices. Visit megaphone.fm/adchoices
Last year saw a record number of healthcare hacks with more than 700 separate incidents. And with a subsidiary of United Healthcare forking over a $22 billion ransom this year, the problem isn't going away. With so much sensitive personal information on file, why aren't hospitals and their ilk better prepared? Guest: Dina Carlisle, president of the local nurses union, OPEIU 40 in Michigan. Justin Sherman, CEO of Global Cyber Strategies. Want more What Next TBD? Subscribe to Slate Plus to access ad-free listening to the whole What Next family and all your favorite Slate podcasts. Subscribe today on Apple Podcasts by clicking “Try Free” at the top of our show page. Sign up now at slate.com/whatnextplus to get access wherever you listen. Learn more about your ad choices. Visit megaphone.fm/adchoices
Last year saw a record number of healthcare hacks with more than 700 separate incidents. And with a subsidiary of United Healthcare forking over a $22 billion ransom this year, the problem isn't going away. With so much sensitive personal information on file, why aren't hospitals and their ilk better prepared? Guest: Dina Carlisle, president of the local nurses union, OPEIU 40 in Michigan. Justin Sherman, CEO of Global Cyber Strategies. Want more What Next TBD? Subscribe to Slate Plus to access ad-free listening to the whole What Next family and all your favorite Slate podcasts. Subscribe today on Apple Podcasts by clicking “Try Free” at the top of our show page. Sign up now at slate.com/whatnextplus to get access wherever you listen. Learn more about your ad choices. Visit megaphone.fm/adchoices
Last year saw a record number of healthcare hacks with more than 700 separate incidents. And with a subsidiary of United Healthcare forking over a $22 billion ransom this year, the problem isn't going away. With so much sensitive personal information on file, why aren't hospitals and their ilk better prepared? Guest: Dina Carlisle, president of the local nurses union, OPEIU 40 in Michigan. Justin Sherman, CEO of Global Cyber Strategies. Want more What Next TBD? Subscribe to Slate Plus to access ad-free listening to the whole What Next family and all your favorite Slate podcasts. Subscribe today on Apple Podcasts by clicking “Try Free” at the top of our show page. Sign up now at slate.com/whatnextplus to get access wherever you listen. Learn more about your ad choices. Visit megaphone.fm/adchoices
If Then | News on technology, Silicon Valley, politics, and tech policy
Last year saw a record number of healthcare hacks with more than 700 separate incidents. And with a subsidiary of United Healthcare forking over a $22 billion ransom this year, the problem isn't going away. With so much sensitive personal information on file, why aren't hospitals and their ilk better prepared? Guest: Dina Carlisle, president of the local nurses union, OPEIU 40 in Michigan. Justin Sherman, CEO of Global Cyber Strategies. Want more What Next TBD? Subscribe to Slate Plus to access ad-free listening to the whole What Next family and all your favorite Slate podcasts. Subscribe today on Apple Podcasts by clicking “Try Free” at the top of our show page. Sign up now at slate.com/whatnextplus to get access wherever you listen. Learn more about your ad choices. Visit megaphone.fm/adchoices
On March 20, the House of Representatives passed the Protecting Americans' Data From Foreign Adversaries Act. The House bill was passed by the Senate on April 23 as part of the larger foreign aid package, which President Biden signed into law on April 24. Lawfare Senior Editor Stephanie Pell sat down with Justin Sherman, Senior Fellow at Duke University's Sanford School of Public Policy, to talk about the benefits and limits of the new legislation, now law. They talked about the path that led to the bill's passage in both the House and Senate, similarities and differences between this new legislation and a recent Executive Order focusing on the preventing the sale of American's bulk sensitive personal data, and some ways the new law could be improved. To receive ad-free podcasts, become a Lawfare Material Supporter at www.patreon.com/lawfare. You can also support Lawfare by making a one-time donation at https://givebutter.com/c/trumptrials.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Last week President Joe Biden signed into law a measure that would force the Chinese firm ByteDance to divest its ownership of TikTok, or risk the app being banned in the US. The measure also included restrictions on the sale of personal data to foreign entities. What are the implications of these moves for US and global tech policy going forward? What will the inevitable legal challenges look like?To learn more, Justin Hendrix spoke with Anupam Chander, law professor at Georgetown and a visiting scholar at the Institute for Rebooting Social Media at Harvard University; Rose Jackson, the director of the Democracy and Tech Initiative at the Atlantic Council; and Justin Sherman, CEO of global cyber strategies and adjunct professor at Duke University.
Justin Sherman is the founder of Justintime Baseball, an independent baseball training, softball training, and coaching business located in Westchester, NY. They partner with little leagues, recreation programs, private groups, and individuals throughout Westchester and Connecticut. They believe in building and developing fundamental skills in baseball and softball, while also instilling a sense of confidence and independence through individualized instruction.
It's a Bonus Episode with Smoked BBQ Source's, Joe Clements, JustinTime Baseball's, Justin Sherman, and International Baseball Promoter, Dmitry Sagalchik Joe Clements is the founder and editor in chief of https://www.smokedbbqsource.com/ which is one of the largest barbecue and grilling websites. Arranging this was worth the effort as Joe joined us from his home in Australia which was 16 hours ahead of us. Joe's Smoked BBQ Source website is filled with barbecue recipes and techniques, smoker and grill reviews, and much more. Joe may live in Australia, but his heart is anywhere great BBQ is served and Joe has become quite knowledgeable about American BBQ. Justin Sherman and Dmitry Sagalchik make a great team as they join us to talk youth baseball and international baseball. Justin is the founder of JustinTime Baseball, www.justintimebaseball.com, an independent baseball/softball training and coaching business. Dmitry is extremely knowledgeable about international baseball and was instrumental in bringing Ukraine's national baseball team to the United States in 2022. Together they know something about helping baseball to grow by working with the youth and promoting the game internationally. We conclude the show with the song, Baseball Always Brings You Home from the musician, Dave Dresser and the poet, Shel Krakofsky. We recommend you go to Baseball BBQ, https://baseballbbq.com for special grilling tools and accessories, Magnechef https://magnechef.com/ for excellent and unique barbecue gloves, Cutting Edge Firewood High Quality Kiln Dried Firewood - Cutting Edge Firewood in Atlanta for high quality firewood and cooking wood, Mantis BBQ, https://mantisbbq.com/ to purchase their outstanding sauces with a portion of the proceeds being donated to the Kidney Project, and for exceptional sauces, Elda's Kitchen https://eldaskitchen.com/ We truly appreciate our listeners and hope that all of you are staying safe. If you would like to contact the show, we would love to hear from you. Call the show: (516) 855-8214 Email: baseballandbbq@gmail.com Twitter: @baseballandbbq Instagram: baseballandbarbecue YouTube: baseball and bbq Website: https//baseballandbbq.weebly.com Facebook: baseball and bbq
On Feb. 13, Senator Ron Wyden released a letter documenting an investigation his office has been conducting into the activities of Near Intelligence Inc., a data broker that allegedly enabled an anti-abortion organization to target anti-abortion messaging and ads to people visiting 600 Planned Parenthood clinics across the United States. Lawfare Senior Editor Stephanie Pell sat down with Justin Sherman, CEO of Global Cyber Strategies and a Senior Fellow at Duke University's Sanford School of Public Policy, to discuss this investigation. They talked about the various players in the data broker ecosystem that enable these invasive practices, the lack of federal legislation governing and preventing these activities, and what actions the FTC might be able to take against Near Intelligence Inc. Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Last week, the Federal Trade Commission (FTC) reached a settlement with location data broker X-Mode Social. X-Mode collects over 10 billion location data points from all over the world every day, and sells it to clients in a range of industries, like advertisers, consulting firms, and private government contractors. The FTC argued that the data broker was conducting unfair business practices, including selling people's sensitive location data.To discuss the FTC settlement and its implications, Lawfare's Fellow in Technology Policy and Law Eugenia Lostri sat down with Justin Sherman, Founder and CEO of Global Cyber Strategies and a Senior Fellow at Duke University's Sanford School of Public Policy. They talked about the FTC's groundbreaking decision to list sensitive locations about which X-Mode cannot sell data, the likelihood that we will see further FTC action against data brokers, and the persistent need for comprehensive privacy legislation to better address harms.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Returning from winter break, this episode of the Cyberlaw Podcast covers a lot of ground. The story I think we'll hear the most about in 2024 is the remarkable exploit used to compromise several generations of Apple iPhone. The question I think we'll be asking for the next year is simple: How could an attack like this be introduced without Apple's knowledge and support? We don't get to this question until near the end of the episode, and I don't claim great expertise in exploit design, but it's very hard to see how such an elaborate compromise could be slipped past Apple's security team. The second question is which government created the exploit. It might be a scandal if it were done by the U.S. But it would be far more of a scandal if done by any other nation. Jeffery Atik and I lead off the episode by covering recent AI legal developments that simply underscore the obvious: AI engines can't get patents as “inventors.” But it's quite possible that they'll make a whole lot of technology “obvious” and thus unpatentable. Paul Stephan joins us to note that National Institute of Standards and Technology (NIST) has come up with some good questions about standards for AI safety. Jeffery notes that U.S. lawmakers have finally woken up to the EU's misuse of tech regulation to protect the continent's failing tech sector. Even the continent's tech sector seems unhappy with the EU's AI Act, which was rushed to market in order to beat the competition and is therefore flawed and likely to yield unintended and disastrous consequences. A problem that inspires this week's Cybertoonz. Paul covers a lawsuit blaming AI for the wrongful denial of medical insurance claims. As he points out, insurers have been able to wrongfully deny claims for decades without needing AI. Justin Sherman and I dig deep into a NYTimes article claiming to have found a privacy problem in AI. We conclude that AI may have a privacy problem, but extracting a few email addresses from ChatGPT doesn't prove the case. Finally, Jeffery notes an SEC “sweep” examining the industry's AI use. Paul explains the competition law issues raised by app stores – and the peculiar outcome of litigation against Apple and Google. Apple skated in a case tried before a judge, but Google lost before a jury and entered into an expensive settlement with other app makers. Yet it's hard to say that Google's handling of its app store monopoly is more egregiously anticompetitive than Apple's. We do our own research in real time in addressing an FTC complaint against Rite Aid for using facial recognition to identify repeat shoplifters. The FTC has clearly learned Paul's dictum, “The best time to kick someone is when they're down.” And its complaint shows a lack of care consistent with that posture. I criticize the FTC for claiming without citation that Rite Aid ignored racial bias in its facial recognition software. Justin and I dig into the bias data; in my view, if FTC documents could be reviewed for unfair and deceptive marketing, this one would lead to sanctions. The FTC fares a little better in our review of its effort to toughen the internet rules on child privacy, though Paul isn't on board with the whole package. We move from government regulation of Silicon Valley to Silicon Valley regulation of government. Apple has decided that it will now require a judicial order to give government's access to customers' “push notifications.” And, giving the back of its hand to crime victims, Google decides to make geofence warrants impossible by blinding itself to the necessary location data. Finally, Apple decides to regulate India's hacking of opposition politicians and runs into a Bharatiya Janata Party (BJP) buzzsaw. Paul and Jeffery decode the EU's decision to open a DSA content moderation investigation into X. We also dig into the welcome failure of an X effort to block California's content moderation law. Justin takes us through the latest developments in Cold War 2.0. China is hacking our ports and utilities with intent to disrupt (as opposed to spy on) them. The U.S. is discovering that derisking our semiconductor supply chain is going to take hard, grinding work. Justin looks at a recent report presenting actual evidence on the question of TikTok's standards for boosting content of interest to the Chinese government. And in quick takes, I celebrate the end of the Reign of Mickey Mouse in copyright law Paul explains why Madison Square Garden is still able to ban lawyers who have sued the Garden I note the new short-term FISA 702 extension Paul predicts that the Supreme Court will soon decide whether police can require suspects to provide police with phone passcodes And Paul and I quickly debate Daphne Keller's amicus brief for Frances Fukuyama in the Supreme Court's content moderation cases Download 486th Episode (mp3) You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@gmail.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.
Returning from winter break, this episode of the Cyberlaw Podcast covers a lot of ground. The story I think we'll hear the most about in 2024 is the remarkable exploit used to compromise several generations of Apple iPhone. The question I think we'll be asking for the next year is simple: How could an attack like this be introduced without Apple's knowledge and support? We don't get to this question until near the end of the episode, and I don't claim great expertise in exploit design, but it's very hard to see how such an elaborate compromise could be slipped past Apple's security team. The second question is which government created the exploit. It might be a scandal if it were done by the U.S. But it would be far more of a scandal if done by any other nation. Jeffery Atik and I lead off the episode by covering recent AI legal developments that simply underscore the obvious: AI engines can't get patents as “inventors.” But it's quite possible that they'll make a whole lot of technology “obvious” and thus unpatentable. Paul Stephan joins us to note that National Institute of Standards and Technology (NIST) has come up with some good questions about standards for AI safety. Jeffery notes that U.S. lawmakers have finally woken up to the EU's misuse of tech regulation to protect the continent's failing tech sector. Even the continent's tech sector seems unhappy with the EU's AI Act, which was rushed to market in order to beat the competition and is therefore flawed and likely to yield unintended and disastrous consequences. A problem that inspires this week's Cybertoonz. Paul covers a lawsuit blaming AI for the wrongful denial of medical insurance claims. As he points out, insurers have been able to wrongfully deny claims for decades without needing AI. Justin Sherman and I dig deep into a NYTimes article claiming to have found a privacy problem in AI. We conclude that AI may have a privacy problem, but extracting a few email addresses from ChatGPT doesn't prove the case. Finally, Jeffery notes an SEC “sweep” examining the industry's AI use. Paul explains the competition law issues raised by app stores – and the peculiar outcome of litigation against Apple and Google. Apple skated in a case tried before a judge, but Google lost before a jury and entered into an expensive settlement with other app makers. Yet it's hard to say that Google's handling of its app store monopoly is more egregiously anticompetitive than Apple's. We do our own research in real time in addressing an FTC complaint against Rite Aid for using facial recognition to identify repeat shoplifters. The FTC has clearly learned Paul's dictum, “The best time to kick someone is when they're down.” And its complaint shows a lack of care consistent with that posture. I criticize the FTC for claiming without citation that Rite Aid ignored racial bias in its facial recognition software. Justin and I dig into the bias data; in my view, if FTC documents could be reviewed for unfair and deceptive marketing, this one would lead to sanctions. The FTC fares a little better in our review of its effort to toughen the internet rules on child privacy, though Paul isn't on board with the whole package. We move from government regulation of Silicon Valley to Silicon Valley regulation of government. Apple has decided that it will now require a judicial order to give government's access to customers' “push notifications.” And, giving the back of its hand to crime victims, Google decides to make geofence warrants impossible by blinding itself to the necessary location data. Finally, Apple decides to regulate India's hacking of opposition politicians and runs into a Bharatiya Janata Party (BJP) buzzsaw. Paul and Jeffery decode the EU's decision to open a DSA content moderation investigation into X. We also dig into the welcome failure of an X effort to block California's content moderation law. Justin takes us through the latest developments in Cold War 2.0. China is hacking our ports and utilities with intent to disrupt (as opposed to spy on) them. The U.S. is discovering that derisking our semiconductor supply chain is going to take hard, grinding work. Justin looks at a recent report presenting actual evidence on the question of TikTok's standards for boosting content of interest to the Chinese government. And in quick takes, I celebrate the end of the Reign of Mickey Mouse in copyright law Paul explains why Madison Square Garden is still able to ban lawyers who have sued the Garden I note the new short-term FISA 702 extension Paul predicts that the Supreme Court will soon decide whether police can require suspects to provide police with phone passcodes And Paul and I quickly debate Daphne Keller's amicus brief for Frances Fukuyama in the Supreme Court's content moderation cases Download 486th Episode (mp3) You can subscribe to The Cyberlaw Podcast using iTunes, Google Play, Spotify, Pocket Casts, or our RSS feed. As always, The Cyberlaw Podcast is open to feedback. Be sure to engage with @stewartbaker on Twitter. Send your questions, comments, and suggestions for topics or interviewees to CyberlawPodcast@gmail.com. Remember: If your suggested guest appears on the show, we will send you a highly coveted Cyberlaw Podcast mug! The views expressed in this podcast are those of the speakers and do not reflect the opinions of their institutions, clients, friends, families, or pets.
On November 6, researchers at Duke University's Sanford School of Public Policy issued a report on “Data Brokers and the Sale of Data on U.S. Military Personnel” that illuminates the national security risks arising from the sale of these data. Lawfare Senior Editor Stephanie Pell sat down with the three of the report's authors: Justin Sherman, a Senior Fellow at the Sanford School of Public Policy who leads its data brokerage research project; Hayley Barton, a Master of Public Policy and Master of Business Administration student at Duke University and a former research assistant on Duke's data brokerage research project; and Brady Allen Kruse, a Master of Public Policy student at Duke University and a research assistant on Duke's data brokerage research project.They talked about the kinds of data that data brokers collect and sell about U.S. military personnel, the national security risks created by these practices, and the gaps in the law that enable this activity. They also discussed policy recommendations for the U.S. federal government to address the risks associated with data brokerage and the sale of data on former and active-duty U.S. military personnel.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
In the debate about data privacy and harms, one issue has not received adequate attention by the press or in policy conversations relative to the severity and volume of harm: the link between publicly available information and stalking and gendered violence. To discuss how “people search” data brokers use public information and contribute to stalking and abuse, Lawfare's Fellow in Technology Policy and Law, Eugenia Lostri, sat down with Justin Sherman who recently wrote a Lawfare article on the topic. Justin is the Founder and CEO of Global Cyber Strategies and a Senior Fellow at Duke University's Sanford School of Public Policy. They talked about the publicly available information carve-outs, the systemic nature of the problem, and how policymakers should step in.Content Warning: This episode contains discussions of gendered violence and stalking. Listener discretion is advised.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Remember when President Donald Trump tried to ban TikTok? He called attention to the risk that American users’ data could fall into the hands of Chinese authorities who have ties to the app’s owners. A judge blocked the ban, but even if he hadn’t, experts say so much of our personal information is available to buy from run-of-the-mill data brokers. That includes information on Americans serving in the military, which can have big consequences for national security. Marketplace's Lily Jamali spoke to Justin Sherman, senior fellow at Duke University's Sanford School of Public Policy, about a new study he led in which his team tried buying just that kind of data.
Remember when President Donald Trump tried to ban TikTok? He called attention to the risk that American users’ data could fall into the hands of Chinese authorities who have ties to the app’s owners. A judge blocked the ban, but even if he hadn’t, experts say so much of our personal information is available to buy from run-of-the-mill data brokers. That includes information on Americans serving in the military, which can have big consequences for national security. Marketplace's Lily Jamali spoke to Justin Sherman, senior fellow at Duke University's Sanford School of Public Policy, about a new study he led in which his team tried buying just that kind of data.
This episode was originally published on Mar. 28, 2023. Digital tools like virtual therapy and meditation apps have made mental health care more accessible. But they've made data about the people using them more accessible too. That's what Joanne Kim found while conducting research as an undergraduate student at Duke University. The final report was published in February. During her study, Kim identified 11 data broker firms willing and able to sell highly sensitive mental health data to her. Marketplace's Meghan McCarty Carino spoke with Justin Sherman, a senior fellow at Duke's Sanford School of Public Policy who helped oversee the study, about how this data ends up on the market.
This episode was originally published on Mar. 28, 2023. Digital tools like virtual therapy and meditation apps have made mental health care more accessible. But they've made data about the people using them more accessible too. That's what Joanne Kim found while conducting research as an undergraduate student at Duke University. The final report was published in February. During her study, Kim identified 11 data broker firms willing and able to sell highly sensitive mental health data to her. Marketplace's Meghan McCarty Carino spoke with Justin Sherman, a senior fellow at Duke's Sanford School of Public Policy who helped oversee the study, about how this data ends up on the market.
The data broker industry and its role in the digital economy is under scrutiny from Congress. Lawfare Senior Editor Stephanie Pell sat down with Justin Sherman, the Founder and CEO of Global Cyber Strategies and a Senior Fellow at Duke University's Sanford School of Public Policy, to discuss the data broker ecosystem and the recent article he published in Lawfare about two bills from a previous congress that seek to give consumers more control over the information that data brokers collect and sell about them. They talked about some of the scams and other harms caused by data brokers, the regulatory approaches taken by each bill, and whether federal legislation regulating data brokers will get passed.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
Digital tools like virtual therapy and meditation apps have made mental health care more accessible. But they’ve made data about the people using them more accessible too. That’s what Joanne Kim found while conducting research as an undergraduate student at Duke University. Kim identified 11 data broker firms willing and able to sell highly sensitive mental health data to her. Marketplace’s Meghan McCarty Carino spoke with Justin Sherman, a senior fellow at Duke’s Sanford School of Public Policy who helped oversee the study, about how this data ends up on the market.
Digital tools like virtual therapy and meditation apps have made mental health care more accessible. But they’ve made data about the people using them more accessible too. That’s what Joanne Kim found while conducting research as an undergraduate student at Duke University. Kim identified 11 data broker firms willing and able to sell highly sensitive mental health data to her. Marketplace’s Meghan McCarty Carino spoke with Justin Sherman, a senior fellow at Duke’s Sanford School of Public Policy who helped oversee the study, about how this data ends up on the market.
Russia's use of information warfare during the 2016 U.S. presidential election period focused attention on Russia's weaponization of information in its effort to influence a U.S. election outcome and sow discord across the American public. But to the extent that we only view Russian information warfare as an aggressive or expansionist expression of Moscow's foreign policy, we may misunderstand some key tenants of Russian information warfare doctrine. To gain a better understanding of the history and dynamics of Russian information warfare, Lawfare senior editor Stephanie Pell sat down with Gavin Wilde, senior fellow in the Technology and International Affairs Program at the Carnegie Endowment for International Peace, and Justin Sherman, nonresident fellow at the Atlantic Council's Cyber Statecraft Initiative. They discussed their new paper, "No Water's Edge: Russia's Information War and Regime Security,” and they talked about Russian information doctrine under Vladimir Putin, the differences between how the concept of information security is understood in Russia versus the West, and some key takeaways of their research for analysts and policymakers.Support this show http://supporter.acast.com/lawfare. Hosted on Acast. See acast.com/privacy for more information.
On August 23, the Washington Post published a story about a whistleblower complaint filed by Peiter Zatko, the former security lead and member of Twitter's executive team responsible for information security, privacy, physical security, and information technology. In the whistleblower complaint, Zatko describes extreme problems and deficiencies with the security, privacy, and integrity of Twitter's platform. The complaint also alleges that since 2011, Twitter's senior executives have engaged in making false and misleading statements to users and the Federal Trade Commission about Twitter's privacy, security, and integrity.Lawfare senior editor Stephanie Pell sat down with Justin Sherman, a fellow at the Atlantic Council's Cyber Statecraft Initiative, to discuss some of the most interesting aspects of the complaint. They talked about some of the background leading up to the filing of the complaint, some of its most significant alleged privacy and security violations, and what to look for in the upcoming congressional hearing on the complaint.Support this show http://supporter.acast.com/lawfare. Our GDPR privacy policy was updated on August 8, 2022. Visit acast.com/privacy for more information.