McCrary Institute
@mccrarycyber.bsky.social
Fusing theory with practice, and policy with technology, to protect and advance U.S. interests in the areas of cyber and critical infrastructure security.
Pinned
Have you heard about #ThreatBeat? It's the new one-stop site for news, analysis, alerts and context on the issues shaping cyber policy and infrastructure protection. Find stories from leading journalists plus original commentary all powered by the McCrary Institute. Visit threatbeat.com
Out this morning from @saraefriedman.bsky.social at Inside Cyber, a great summary of our newest paper on the need for a thoughtful, offensive cyber strategy
Here's their story insidecybersecurity.com/share/17633
Read the full report threatbeat.com/project/goin...
Here's their story insidecybersecurity.com/share/17633
Read the full report threatbeat.com/project/goin...
December 23, 2025 at 3:16 PM
Out this morning from @saraefriedman.bsky.social at Inside Cyber, a great summary of our newest paper on the need for a thoughtful, offensive cyber strategy
Here's their story insidecybersecurity.com/share/17633
Read the full report threatbeat.com/project/goin...
Here's their story insidecybersecurity.com/share/17633
Read the full report threatbeat.com/project/goin...
As Washington ramps up conversation on the need for more offensive cyber capabilities, we just released a paper that advocates for a thoughtful, forward-leaning cybersecurity strategy that more proactively defends the homeland and deters our adversaries.
Find it here: threatbeat.com/OffensiveCyber
Find it here: threatbeat.com/OffensiveCyber
December 22, 2025 at 11:38 AM
As Washington ramps up conversation on the need for more offensive cyber capabilities, we just released a paper that advocates for a thoughtful, forward-leaning cybersecurity strategy that more proactively defends the homeland and deters our adversaries.
Find it here: threatbeat.com/OffensiveCyber
Find it here: threatbeat.com/OffensiveCyber
“Our adversary has a pretty clear-eyed view of what they’re trying to achieve... discord and societal panic.” — Nick Andersen, CISA's cyber division.
Full episode on the "first" AI-orchestrated attack, OT security, and the future of the cyber workforce is out now.
Watch here: youtu.be/Kh9HASq2Er8
Full episode on the "first" AI-orchestrated attack, OT security, and the future of the cyber workforce is out now.
Watch here: youtu.be/Kh9HASq2Er8
December 19, 2025 at 5:17 PM
“Our adversary has a pretty clear-eyed view of what they’re trying to achieve... discord and societal panic.” — Nick Andersen, CISA's cyber division.
Full episode on the "first" AI-orchestrated attack, OT security, and the future of the cyber workforce is out now.
Watch here: youtu.be/Kh9HASq2Er8
Full episode on the "first" AI-orchestrated attack, OT security, and the future of the cyber workforce is out now.
Watch here: youtu.be/Kh9HASq2Er8
New on #ThreatBeat: Precious resources needed to respond to the next campus shooting or other mass-casualty incident could be strained by escalating swatting and bomb threats that intentionally cry wolf
Read the full story: threatbeat.com/amid-deadly-...
Read the full story: threatbeat.com/amid-deadly-...
December 18, 2025 at 7:26 PM
New on #ThreatBeat: Precious resources needed to respond to the next campus shooting or other mass-casualty incident could be strained by escalating swatting and bomb threats that intentionally cry wolf
Read the full story: threatbeat.com/amid-deadly-...
Read the full story: threatbeat.com/amid-deadly-...
In a new piece on #ThreatBeat, Aden Klein and Andy Kotz argue that the review of the US-Mexico-Canada trade agreement is the "best opportunity to advance secure digital infrastructure and influence technological markets in Northern and Latin America."
Full commentary: threatbeat.com/how-the-u-s-...
Full commentary: threatbeat.com/how-the-u-s-...
December 18, 2025 at 6:03 PM
In a new piece on #ThreatBeat, Aden Klein and Andy Kotz argue that the review of the US-Mexico-Canada trade agreement is the "best opportunity to advance secure digital infrastructure and influence technological markets in Northern and Latin America."
Full commentary: threatbeat.com/how-the-u-s-...
Full commentary: threatbeat.com/how-the-u-s-...
New on #ThreatBeat: Homeland Security Chairman Garbarino wants to see offensive cyber in forthcoming strategy
Here's the full story threatbeat.com/homeland-sec...
Here's the full story threatbeat.com/homeland-sec...
December 16, 2025 at 8:43 PM
New on #ThreatBeat: Homeland Security Chairman Garbarino wants to see offensive cyber in forthcoming strategy
Here's the full story threatbeat.com/homeland-sec...
Here's the full story threatbeat.com/homeland-sec...
We had a packed house and a really thoughtful discussion with House Homeland Security Committee Chairman Garbarino and CrowdStrike's Drew Bagley. Hear their thoughts on the threat from China, opportunities and risks from AI and cyber legislative priorities
Watch here: www.youtube.com/live/Nkg_bHY...
Watch here: www.youtube.com/live/Nkg_bHY...
December 16, 2025 at 8:26 PM
We had a packed house and a really thoughtful discussion with House Homeland Security Committee Chairman Garbarino and CrowdStrike's Drew Bagley. Hear their thoughts on the threat from China, opportunities and risks from AI and cyber legislative priorities
Watch here: www.youtube.com/live/Nkg_bHY...
Watch here: www.youtube.com/live/Nkg_bHY...
Today at 11am EST, join us for a conversation on the growing risk from the People's Republic of China with House Homeland Security Committee Chairman Garbarino and CrowdStrike's Drew Bagley. Didn't RSVP? You can watch a livestream at www.youtube.com/live/Nkg_bHY...
December 16, 2025 at 1:48 PM
Today at 11am EST, join us for a conversation on the growing risk from the People's Republic of China with House Homeland Security Committee Chairman Garbarino and CrowdStrike's Drew Bagley. Didn't RSVP? You can watch a livestream at www.youtube.com/live/Nkg_bHY...
Reposted by McCrary Institute
Nominations Are Now Open for the Third Annual Cyber Policy Awards!
Submit your nominations by December 12th to recognize outstanding contributions in one of seven categories
#cybersecurity #policy
securityandtechnology.org/event/third-...
Submit your nomination here: form.jotform.com/252225026250...
Submit your nominations by December 12th to recognize outstanding contributions in one of seven categories
#cybersecurity #policy
securityandtechnology.org/event/third-...
Submit your nomination here: form.jotform.com/252225026250...
Third Annual Cyber Policy Awards
Save the Date to join IST for the Third Annual Cyber Policy Awards in February 2026.
securityandtechnology.org
December 10, 2025 at 11:28 PM
Nominations Are Now Open for the Third Annual Cyber Policy Awards!
Submit your nominations by December 12th to recognize outstanding contributions in one of seven categories
#cybersecurity #policy
securityandtechnology.org/event/third-...
Submit your nomination here: form.jotform.com/252225026250...
Submit your nominations by December 12th to recognize outstanding contributions in one of seven categories
#cybersecurity #policy
securityandtechnology.org/event/third-...
Submit your nomination here: form.jotform.com/252225026250...
New on #ThreatBeat: Violent online extortion groups raise alarm over the ‘most egregious exploitation’ ever seen.
Get the full story: threatbeat.com/most-egregio...
Get the full story: threatbeat.com/most-egregio...
December 10, 2025 at 2:50 PM
New on #ThreatBeat: Violent online extortion groups raise alarm over the ‘most egregious exploitation’ ever seen.
Get the full story: threatbeat.com/most-egregio...
Get the full story: threatbeat.com/most-egregio...
Satellites get the hype, but the ocean floor does the work.
Subsea cables carry 95-99% of ALL intercontinental internet traffic. From Netflix to national security data, it’s all sitting on the seabed.
Watch the breakdown with Alex Botting on this episode of the Cyber Focus: youtu.be/1el7QORORTs
Subsea cables carry 95-99% of ALL intercontinental internet traffic. From Netflix to national security data, it’s all sitting on the seabed.
Watch the breakdown with Alex Botting on this episode of the Cyber Focus: youtu.be/1el7QORORTs
December 10, 2025 at 2:35 PM
Satellites get the hype, but the ocean floor does the work.
Subsea cables carry 95-99% of ALL intercontinental internet traffic. From Netflix to national security data, it’s all sitting on the seabed.
Watch the breakdown with Alex Botting on this episode of the Cyber Focus: youtu.be/1el7QORORTs
Subsea cables carry 95-99% of ALL intercontinental internet traffic. From Netflix to national security data, it’s all sitting on the seabed.
Watch the breakdown with Alex Botting on this episode of the Cyber Focus: youtu.be/1el7QORORTs
Reminder to register for a conversation on the growing cyber threat from China with new House Homeland Security Committee Chairman Andrew Garbarino on December 16. Space is limited so please RSVP. Note the new time! auburn.qualtrics.com/jfe/form/SV_...
December 9, 2025 at 6:26 PM
Reminder to register for a conversation on the growing cyber threat from China with new House Homeland Security Committee Chairman Andrew Garbarino on December 16. Space is limited so please RSVP. Note the new time! auburn.qualtrics.com/jfe/form/SV_...
This week on Cyber Focus, Army Principal Cyber Advisor Brandon Pugh explains why the National Guard & Reserves are the military's hidden advantage. These experts often hold high-level civilian tech jobs & bring elite skills to the fight out of pure patriotism. Listen: www.youtube.com/watch?v=0Mh_...
December 8, 2025 at 9:54 PM
This week on Cyber Focus, Army Principal Cyber Advisor Brandon Pugh explains why the National Guard & Reserves are the military's hidden advantage. These experts often hold high-level civilian tech jobs & bring elite skills to the fight out of pure patriotism. Listen: www.youtube.com/watch?v=0Mh_...
Join us on December 16 for a conversation with new House Homeland Security Committee Chairman Andrew Garbarino. We're excited to get the new Chairman's thoughts on the growing cyber threat from the People's Republic of China. Space is limited so please RSVP auburn.qualtrics.com/jfe/form/SV_...
December 3, 2025 at 3:33 PM
Join us on December 16 for a conversation with new House Homeland Security Committee Chairman Andrew Garbarino. We're excited to get the new Chairman's thoughts on the growing cyber threat from the People's Republic of China. Space is limited so please RSVP auburn.qualtrics.com/jfe/form/SV_...
@usarmy.bsky.social Principal Cyber Advisor Brandon Pugh says the U.S. can’t afford to sit on the sidelines of AI—slowing development and deployment only helps adversaries catch up.
Hear why on Cyber Focus: youtu.be/0Mh_cowjgX0
#cybersecurity #AI
Hear why on Cyber Focus: youtu.be/0Mh_cowjgX0
#cybersecurity #AI
December 3, 2025 at 2:42 PM
@usarmy.bsky.social Principal Cyber Advisor Brandon Pugh says the U.S. can’t afford to sit on the sidelines of AI—slowing development and deployment only helps adversaries catch up.
Hear why on Cyber Focus: youtu.be/0Mh_cowjgX0
#cybersecurity #AI
Hear why on Cyber Focus: youtu.be/0Mh_cowjgX0
#cybersecurity #AI
After Alabama came within days of a major cyber crisis, state leaders doubled down on relationships—not just tools. CIO Daniel Urquhart and CISO Chad Smith are building a “one team, one fight” approach with federal partners, the National Guard, utilities, and local agencies.
November 19, 2025 at 4:06 PM
After Alabama came within days of a major cyber crisis, state leaders doubled down on relationships—not just tools. CIO Daniel Urquhart and CISO Chad Smith are building a “one team, one fight” approach with federal partners, the National Guard, utilities, and local agencies.
65% of data breaches come from third-party compromise.
On Cyber Focus, SecurityScorecard CEO Aleksandr Yampolskiy calls supply chain risk “the new epidemic" in cybersecurity—and warns it’s only getting worse.
Full Episode: mccraryinstitute.com/podcast/cybe...
#Cybersecurity #SupplyChainSecurity
On Cyber Focus, SecurityScorecard CEO Aleksandr Yampolskiy calls supply chain risk “the new epidemic" in cybersecurity—and warns it’s only getting worse.
Full Episode: mccraryinstitute.com/podcast/cybe...
#Cybersecurity #SupplyChainSecurity
November 12, 2025 at 8:37 PM
65% of data breaches come from third-party compromise.
On Cyber Focus, SecurityScorecard CEO Aleksandr Yampolskiy calls supply chain risk “the new epidemic" in cybersecurity—and warns it’s only getting worse.
Full Episode: mccraryinstitute.com/podcast/cybe...
#Cybersecurity #SupplyChainSecurity
On Cyber Focus, SecurityScorecard CEO Aleksandr Yampolskiy calls supply chain risk “the new epidemic" in cybersecurity—and warns it’s only getting worse.
Full Episode: mccraryinstitute.com/podcast/cybe...
#Cybersecurity #SupplyChainSecurity
We're so proud to have Aiden Anderson as a member of our McCrary team hunting for vulnerabilities in America's power grid. Here's his story ‘I lost my sight, but gained vision.’ Truly inspirational! www.eng.auburn.edu/news/2025/10...
‘I lost my sight, but gained vision’: Senior in CSSE named Student of the Year from the Governor's Committee on Employment of People with Disabilities
Aidan Anderson works as a research and development engineer at the McCrary Institute for Cyber and Critical Infrastructure Security.
www.eng.auburn.edu
November 5, 2025 at 10:48 PM
We're so proud to have Aiden Anderson as a member of our McCrary team hunting for vulnerabilities in America's power grid. Here's his story ‘I lost my sight, but gained vision.’ Truly inspirational! www.eng.auburn.edu/news/2025/10...
CVE has quietly underpinned global cybersecurity for 26 years—tracking vulnerabilities across systems we all depend on.
But on the Cyber Focus podcast @istorg.bsky.social's Nick Leiserson says that foundation is cracking.
Find us on Spotify, Apple, or YT
youtu.be/jYXxlDWF7hw
#Cybersecurity #CVE
But on the Cyber Focus podcast @istorg.bsky.social's Nick Leiserson says that foundation is cracking.
Find us on Spotify, Apple, or YT
youtu.be/jYXxlDWF7hw
#Cybersecurity #CVE
November 5, 2025 at 3:15 PM
CVE has quietly underpinned global cybersecurity for 26 years—tracking vulnerabilities across systems we all depend on.
But on the Cyber Focus podcast @istorg.bsky.social's Nick Leiserson says that foundation is cracking.
Find us on Spotify, Apple, or YT
youtu.be/jYXxlDWF7hw
#Cybersecurity #CVE
But on the Cyber Focus podcast @istorg.bsky.social's Nick Leiserson says that foundation is cracking.
Find us on Spotify, Apple, or YT
youtu.be/jYXxlDWF7hw
#Cybersecurity #CVE
November is #InfrastructureSecurityMonth, a perfect time to check in with some of our sector leaders. Exclusively on #ThreatBeat, thoughts from leaders of the water, electricity, space, food and agriculture, health sectors and more on their most concerning threats.
threatbeat.com/critical-inf...
threatbeat.com/critical-inf...
Critical infrastructure sectors on the most concerning threats – and needed solutions
SYMPOSIUM: Threat Beat asked ISACs/ISAOs: 1) What is the most pressing short-term security concern in your sector? 2) What is one thing the public and/or industry/gov can do now to address this?
threatbeat.com
November 3, 2025 at 10:51 PM
November is #InfrastructureSecurityMonth, a perfect time to check in with some of our sector leaders. Exclusively on #ThreatBeat, thoughts from leaders of the water, electricity, space, food and agriculture, health sectors and more on their most concerning threats.
threatbeat.com/critical-inf...
threatbeat.com/critical-inf...
It seems like you hear about a new cyber threat everyday. So how can you make sense of the threat coming from our biggest cyber adversary: China. Here's a quick video featuring McCrary Institute experts explaining each of the Typhoon cyber campaigns and why they matter. youtu.be/iTC-YCbILrI?...
Code Red: A Guide to Understanding China’s Sophisticated Typhoon Cyber Campaigns
YouTube video by McCrary Institute
youtu.be
November 3, 2025 at 10:49 PM
It seems like you hear about a new cyber threat everyday. So how can you make sense of the threat coming from our biggest cyber adversary: China. Here's a quick video featuring McCrary Institute experts explaining each of the Typhoon cyber campaigns and why they matter. youtu.be/iTC-YCbILrI?...
This week's episode of Cyber Focus features the Co-Chairs of our China Task Force Mark Montgomery, Brad Medairy and William Evanina. They share what you need to know about the various Typhoon cyber campaigns.
🎙️Watch and listen the full podcast here: mccraryinstitute.com/podcast/cybe...
🎙️Watch and listen the full podcast here: mccraryinstitute.com/podcast/cybe...
October 30, 2025 at 11:40 PM
This week's episode of Cyber Focus features the Co-Chairs of our China Task Force Mark Montgomery, Brad Medairy and William Evanina. They share what you need to know about the various Typhoon cyber campaigns.
🎙️Watch and listen the full podcast here: mccraryinstitute.com/podcast/cybe...
🎙️Watch and listen the full podcast here: mccraryinstitute.com/podcast/cybe...
As the world focuses on the US-China relationship, we released a paper raising the alarm on the sophisticated cyber threat posed by the People’s Republic of China. It lays out -in simple terms- the sustained, coordinated assault on our national and economic security www.threatbeat.com/ChinaThreat
October 29, 2025 at 10:50 AM
As the world focuses on the US-China relationship, we released a paper raising the alarm on the sophisticated cyber threat posed by the People’s Republic of China. It lays out -in simple terms- the sustained, coordinated assault on our national and economic security www.threatbeat.com/ChinaThreat
Quick Event Update: Our upcoming event - Protecting Against the PRC, a conversation on the threat from the People’s Republic of China with Chairman of the House Homeland Security Committee Andrew Garbarino - needs to be rescheduled. Stay tuned for a new date for this important conversation!
October 27, 2025 at 2:42 PM
Quick Event Update: Our upcoming event - Protecting Against the PRC, a conversation on the threat from the People’s Republic of China with Chairman of the House Homeland Security Committee Andrew Garbarino - needs to be rescheduled. Stay tuned for a new date for this important conversation!
Exclusively on #ThreatBeat: Former General Counsel of the White House Office of Management and Budget Ilona Cohen warns that a "perfect storm of events has weakened America’s cybersecurity defenses when they are most needed."
Read the full piece on Threat Beat: threatbeat.com/federal-shut...
Read the full piece on Threat Beat: threatbeat.com/federal-shut...
Federal shutdown and expiration of key laws weaken America’s cybersecurity defenses
As the federal government shutdown persists with no immediate end in sight, the news coverage echoes that of prior shutdowns, highlighting unpaid federal employees, delayed flyers…
threatbeat.com
October 22, 2025 at 8:22 PM
Exclusively on #ThreatBeat: Former General Counsel of the White House Office of Management and Budget Ilona Cohen warns that a "perfect storm of events has weakened America’s cybersecurity defenses when they are most needed."
Read the full piece on Threat Beat: threatbeat.com/federal-shut...
Read the full piece on Threat Beat: threatbeat.com/federal-shut...