In this episode of Trust vs., cybersecurity law expert Cristin Flynn Goodwin joins the show to break down some of the most nuanced (and misunderstood) topics in cyber: active defense, regulation, and the legal implications of emerging tech like agentic AI. With over 17 years at Microsoft leading incident response and threat intel, Cristin shares what it really takes to disrupt nation-state actors, why “hacking back” is more emotional than practical, and how regulations like the EU Cyber Resilience Act are reshaping third-party risk. She also looks ahead to what may be the most complex challenge yet: governing AI agents in an identity-driven world.
