Trump budget cuts, agency gutting, leave Americans at greater risk of being hacked, experts warn

As the second Trump administration nears its one-year mark, cybersecurity professionals are sounding the alarm over budget reductions and agency rollbacks that are compromising the government's ability to shield businesses from cyber threats. Experts point to a troubling trend in which essential communication channels between federal agencies and private sectors have weakened, despite the rising threat landscape enhanced by artificial intelligence. The latest evaluation from the bipartisan U.S. Cyberspace Solarium Commission indicates that the U.S. is falling short on 82 critical cybersecurity goals aimed at fortifying national defenses. "We were surprised and disappointed," remarked Retired Admiral Mark Montgomery, the executive director of Cybersolarium.org. These objectives include easing regulations for vital infrastructure firms, enhancing cyber capabilities within the FBI and intelligence agencies, and improving cybersecurity education in K-12 institutions. Montgomery attributes the decline in cyber preparedness to budget cuts at the Cybersecurity and Infrastructure Agency (CISA) and previous efforts that have significantly impacted the State Department and other key agencies. Adding to the concern, a crucial law that allowed companies to share cybersecurity information without fear of antitrust repercussions lapsed on September 30. Despite public assertions from the Trump administration about their commitment to strengthening cyber defenses, the reality appears starkly different. A CISA spokesperson defended their efforts, emphasizing collaboration and intelligence sharing, but Montgomery argues that there is a pessimistic outlook on federal cybersecurity initiatives compared to the administration's self-assessment. Recent history has shown a surge in attacks linked to nation-states, raising alarms among security experts. For instance, the Congressional Budget Office recently faced a cyber breach attributed to a foreign actor. Furthermore, legislative progress on cybersecurity initiatives has stalled, including the confirmation of Sean Plankey as the head of CISA, which has been pending since summer hearings. Experts warn that as responsibility for coordinating cybersecurity shifts to state and local governments and the private sector, funding for these initiatives has been slashed. Carole House, a former National Security Council advisor, expressed concern that the federal government is relinquishing essential coordination capabilities while simultaneously undermining the resources necessary for such efforts. Additionally, proposed regulations aimed at holding tech companies accountable for developing secure software have lost their enforcement mechanisms. This deterioration in oversight could leave Americans and the economy more susceptible to cyber threats than they were a year ago. Montgomery highlighted the alarming infiltration of critical infrastructure by cyber threats, referencing the discovery of Volt Typhoon, a Chinese cyber adversary targeting essential services. As the landscape of cyber threats evolves, driven increasingly by AI capabilities, experts like Kaitlin Betancourt from Goodwin Law emphasize the urgent need for resources rather than cuts. Cybercriminals are employing AI in sophisticated ways, including targeted extortion attempts. A recent incident involving the generative AI company Anthropic demonstrated how criminals utilized its technology to launch coordinated attacks against multiple organizations. Despite the challenges, there are signs of resilience. The Biden administration has implemented measures requiring software companies to verify their cybersecurity practices, although the Trump administration's recent executive order has rolled back some of the regulatory rigor established by prior administrations. In this ongoing battle against cybercrime, experts believe that a collaborative effort is essential. Montgomery remains hopeful for recovery but warns that continued budget cuts will only hinder progress.