Shows
Advancing CyberAdvancing Cyber - Hacking BackThe drumbeat for “hacking back” resurfaces in public policy circles every few years, usually coinciding with a rise in cyber attacks. It’s a logical, emotional response. An attacker has stolen sensitive data, and frustrated victims ask, “How can we fight back?”Emotionally, it feels justified. Technically, it’s a minefield. From a policy standpoint, it’s an issue that bogs down in liability, unintended consequences, and geopolitics. On the Advancing Cyber Podcast, cybersecurity experts Nathan Case and Stacy O'Mara join host Cristin Flynn Goodwin to debate the pros and cons of hacking back, and the very real...2025-07-231h 07Advancing CyberOrigin Stories Episode 2: Chris Painter, The DiplomatChristopher Painter is a globally recognized leader on cyber policy, cyber diplomacy, cybersecurity, and combating cybercrime. Chris been at the vanguard of cyber issues for over 30 years, first as a federal prosecutor handling some of the most high-profile cyber cases in the United States, including the prosecution of hacker Kevin Mitnik, as a senior official at the U.S. Department of Justice, Computer Crime and Intellectual Property Section, held leadership roles at the FBI, and at the National Security Council in the White House, and finally, as the world’s first cyber diplomat at the Department of State. ...2025-07-0759 minAdvancing CyberOrigin Stories - Episode 1: Government & Policy - Richard ClarkeThe Government Policy Pioneer: Richard A. ClarkeEpisode 1 of the Origin Stories begins with the founder ofmuch of our modern cybersecurity policy, Richard Clarke. Dick served in the White House for ten years under three different presidents. He is responsible for so much of our early cyber policy, developed the first national strategy to defend cyberspace, and has been an influential voice in global cybersecurity discussions for decades. He now leverages that knowledge as a bestselling author and as the founder and CEO of Good Harbor Security Risk Management. ...2025-06-2344 min
Advancing CyberDeepSeek: AI’s Sputnik Moment or Not Good Enough for Prime Time? In this episode of Advancing Cyber, Cristin Flynn Goodwin unpacks the growing concerns surrounding DeepSeek, a Chinese AI provider driving headlines for its powerful AI model built with cheaper and lower-power chips than its Western counterparts. While this breakthrough raises questions about AI efficiency and affordability, it sparks serious privacy concerns, and many have been quick to point out that DeepSeek’s Terms of Service clearly show compliance with laws and government requests in the People’s Republic of China. What hasn’t yet been explored are the impacts of Chinese cybersecurity laws on DeepSeek, particularly the Chinese...2025-02-1108 min
Advancing CyberEurope’s Cyber Regulations Come into Force – and What It Means for US CompaniesThe EU has taken the lead in cybersecurity regulation, and the business impacts are already being felt worldwide. On this episode of Advancing Cyber, Cristin Flynn Goodwin is joined by Chris Hale, Senior Director for Cyber and National Security Law at Cisco, and Emily Lemaire, Financial Services Regulatory Lawyer at Covington & Burling, to unpack Europe’s leading cybersecurity regulations – the Digital Operational Resilience Act (DORA), Network Information Systems Directive (NIS) 2.0, and the Cyber Resilience Act (CRA), all of which have passed milestone dates in the past 4 months. Together, they explore how these landmark regulations are reshaping the global security land...2025-02-0359 min
Advancing CyberThe Evolution of Information Sharing in CybersecurityInformation sharing used to be about trusted exchanges with those who had data to trade. Today, that information comes from the multi-billion-dollar threat intelligence industry and the experts who hunt threat actors and cyber criminals. On this episode of Advancing Cyber, Cyber Threat Alliance President and CEO Michael Daniel and Professor and cyber threat intelligence expert Sergio Caltagirone explore how threat intelligence has matured into one of the fastest growing segments of our industry with customer expectations for timely and actionable data. They unpack how that reality contrasts with the post-9/11 paradigm of information sharing and the insatiable demand...2024-11-2854 min
Advancing CyberWho’s in Charge? Restoring Cloud Services in a Major Incident or DisasterNatural disasters have been hitting the United States hard in 2024, and programs designed to help ensure telecommunications resiliency have been working well in the background to keep people connected and facilitate response. In this episode of Advancing Cyber, host Cristin Flynn Goodwin, joined by telecommunications policy expert Kathryn Condello and telecommunications and cybersecurity veteran Marcus Sachs, addresses a critical problem: what happens when cloud services are taken offline at such a scale that customers and sectors compete to decide who gets restored first? As cloud infrastructure increasingly underpins vital sectors—finance, healthcare, utilities, and government—the question isn’t whethe...2024-10-3146 min
Advancing CyberArtificial Intelligence: Critical Infrastructure, or too early to tell?At the heart of the debate on this episode of Advancing Cyber is a fundamental question: Is “artificial intelligence” itself a critical infrastructure? Join host Cristin Flynn Goodwin, legal expert David Simon, policy leader Jason Healey, and technical expert Jesper Johanssen as they talk through a hypothetical nation state attack against AI to unpack how government and industry would respond. The experts weigh the risks and benefits of regulation, increased sector coordination and collaboration, and the need for an AI-ISAC to prepare for future attacks. Given the diversity of uses for AI, the panel clashes over...2024-09-2051 min
Advancing CyberBlue Screens and Liability, Cyber and AI Regulation, and Disinformation Fails at the OlympicsThe CrowdStrike aftermath, the rise of AI regulations that can’t keep pace with technical change, and nation state actors testing and using AI in cyberattacks. In this premiere episode of Advancing Cyber, host Cristin Flynn Goodwin is joined by Jason Kikta, CISO at Automox, Jen Ellis, Founder of NextJen Security, and Jessica Herrera-Flanigan, Partner at Monument Advocacy, to dive deep and dissect recent cyber events. With differing points of views, they explore the implications of the CrowdStrike incident on software liability, the evolution of cybersecurity and AI technology and regulation, and the role of AI in th...2024-08-1657 min
Advancing CyberAdvancing CyberAdvancing Cyber breaks down the leading issues in cybersecurity – incidents, law, public policy, and technology – from diverse expert perspectives to highlight what really matters. Hosted by Cristin Flynn Goodwin, cyber law and policy expert for 25 years with the world’s largest technology companies, Advancing Cyber brings together experts in cybersecurity technology, law, and policy to explore current issues and trends impacting cyber. 2024-08-1203 min
The Cyberlaw PodcastAre AI models learning to generalize?We begin this episode with Paul Rosenzweig describing major progress in teaching AI models to do text-to-speech conversions. Amazon flagged its new model as having “emergent” capabilities in handling what had been serious problems – things like speaking with emotion, or conveying foreign phrases. The key is the size of the training set, but Amazon was able to spot the point at which more data led to unexpected skills. This leads Paul and me to speculate that training AI models to perform certain tasks eventually leads the model to learn “generalization” of its skills. If so, the more we train AI on a vari...2024-02-2049 minThe Cyberlaw PodcastAre AI models learning to generalize?We begin this episode with Paul Rosenzweig describing major progress in teaching AI models to do text-to-speech conversions. Amazon flagged its new model as having “emergent” capabilities in handling what had been serious problems – things like speaking with emotion, or conveying foreign phrases. The key is the size of the training set, but Amazon was able to spot the point at which more data led to unexpected skills. This leads Paul and me to speculate that training AI models to perform certain tasks eventually leads the model to learn “generalization” of its skills. If so, the more we train AI on a vari...2024-02-2049 minThe Cyberlaw PodcastTechnoColonialism – In ReverseThe Cyberlaw Podcast is back from August hiatus, and the theme of the episode seems to be the way other countries are using the global success of U.S. technology to impose their priorities on the U.S. Exhibit 1 is the EU’s Digital Services Act, which took effect last month. Michael Ellis spells out a few of the act’s sweeping changes in how U.S. tech companies must operate – nominally in Europe but as a practical matter in the U.S. as well. The largest platforms will be heavily regulated, with restrictions on their content curation algorithms and a r...2023-09-061h 01The Cyberlaw PodcastTechnoColonialism – In ReverseThe Cyberlaw Podcast is back from August hiatus, and the theme of the episode seems to be the way other countries are using the global success of U.S. technology to impose their priorities on the U.S. Exhibit 1 is the EU’s Digital Services Act, which took effect last month. Michael Ellis spells out a few of the act’s sweeping changes in how U.S. tech companies must operate – nominally in Europe but as a practical matter in the U.S. as well. The largest platforms will be heavily regulated, with restrictions on their content curation algorithms and a r...2023-09-061h 01The Cyberlaw PodcastYet Another Synthetic Moral Panic Over PrivacySenator Ron Wyden (D-Ore.) is to moral panics over privacy what Andreessen Horowitz is to cryptocurrency startups. He’s constantly trying to blow life into them, hoping to justify new restrictions on government or private uses of data. His latest crusade is against the intelligence community’s purchase of behavioral data, which is generally available to everyone from Amazon to the GRU. He has launched his campaign several times, introducing legislation, holding up Avril Haines’s confirmation over the issue, and extracting a Director of National Intelligence report on the topic that has now been declassified. It was a sober...2023-06-2158 minThe Cyberlaw PodcastYet Another Synthetic Moral Panic Over PrivacySenator Ron Wyden (D-Ore.) is to moral panics over privacy what Andreessen Horowitz is to cryptocurrency startups. He’s constantly trying to blow life into them, hoping to justify new restrictions on government or private uses of data. His latest crusade is against the intelligence community’s purchase of behavioral data, which is generally available to everyone from Amazon to the GRU. He has launched his campaign several times, introducing legislation, holding up Avril Haines’s confirmation over the issue, and extracting a Director of National Intelligence report on the topic that has now been declassified. It was a sober...2023-06-2158 min