The Lawfare Podcast

Timothy Edgar and Paul Rosenzweig on the Volt Typhoon Cyber Intrusion

Mar 19, 2024

Timothy Edgar and Paul Rosenzweig discuss the Volt Typhoon cyber intrusion, highlighting differing views on U.S. cybersecurity strategy. They explore the legal and privacy implications of the botnet removal and the need for reevaluating cybersecurity measures. The conversation touches on the concept of mutually assured disruption in cyber conflicts, the challenges of issuing warrants for technological devices, and the importance of rethinking cybersecurity strategies in response to Chinese threats.

54:45

Creator website

Episode guests

Paul Rosenzweig

Timothy Edgar

AI Summary

AI Chapters

Episode notes

Podcast summary created with Snipd AI

Quick takeaways

The Volt Typhoon cyber intrusion highlighted flaws in US cybersecurity strategy and the need for reevaluation.

Timothy Edgar emphasized dangerous privacy implications in the government's legal theory for cyber operations.

Paul Rosenzweig suggested updating cybersecurity strategies to address evolving threats and challenges in cyberspace.

Deep dives

The Volt Typhoon Cyber Intrusion and US Response

The podcast discusses the intrusion by the Chinese state-sponsored hacking group, Volt Typhoon, targeting US critical infrastructure. The intrusion involved infecting old devices, highlighting flaws in the US cybersecurity strategy. Cybersecurity experts Timothy Edgar and Paul Rosen-Swike provided differing perspectives on the implications. Edgar focused on privacy concerns, while Rosen-Swike emphasized reevaluating cybersecurity strategies.

Introduction

3min

Volt Typhoon Cyber Intrusion: Threats to US Critical Infrastructure

11min

Mutually Assured Cyber Disruption and Defensive Measures

12min

Legal Implications of Cyber Intrusions and Warrants for Technological Devices

3min

Managing Personal Finances and Prioritizing Mental Health

5min

Rule 41 Amendment and Cybersecurity Concerns

8min

Reevaluating Cybersecurity Strategies in Light of Chinese Threats

5min

Addressing Cybersecurity Challenges and Legislative Principles

13min

Conclusion, Support, and Ad

2min

Last May, Microsoft announced that a Chinese state-sponsored hacking group, Volt Typhoon, appeared to be targeting U.S. critical infrastructure and entities abroad in part through establishing a presence in a malware-infected network, or botnet, consisting of old devices located in the United States. At the end of January, the Justice Department announced it had removed the botnet from hundreds of American devices.

Cybersecurity experts Timothy Edgar and Paul Rosenzweig both wrote articles for Lawfare discussing the Volt Typhoon intrusion and the U.S. response. But the authors take away very different lessons from the intrusion. Edgar argued that although the removal of the botnet was a success in terms of cybersecurity, the legal theory the government relied on for conducting this operation has dangerous privacy implications. Rosenzweig, on the other hand, contended that the Volt Typhoon breach illuminates flawed assumptions at the core of the U.S. cybersecurity strategy, which he says must be reexamined.

Lawfare Research Fellow Matt Gluck spoke with Edgar and Rosenzweig about why the Volt Typhoon intrusion and the U.S. response that followed matter for the future of U.S. cybersecurity and privacy, how the government should weigh security and privacy when responding to cyber intrusions, whether nuclear conflict is a good analogy for cyber conflict, and much more.

Support this show http://supporter.acast.com/lawfare.

Hosted on Acast. See acast.com/privacy for more information.

Remember Everything You Learn from Podcasts

Save insights instantly, chat with episodes, and build lasting knowledge - all powered by AI.

The Lawfare Podcast

Timothy Edgar and Paul Rosenzweig on the Volt Typhoon Cyber Intrusion

Episode guests

Podcast summary created with Snipd AI

Quick takeaways

Deep dives

The Volt Typhoon Cyber Intrusion and US Response

Legal Implications and Fourth Amendment Concerns

Mutually Assured Disruption and Deterrence Theory

Public-Private Collaboration and Infrastructure Protection

Future Recommendations and Legislative Principles

Remember Everything You Learn from Podcasts