Pierluigi Paganini
March 04, 2025
US CISA stated there is no change in defending against Russian cyber threats, despite the Trump administration’s temporary pause on offensive cyber operations.
US Defense Secretary Pete Hegseth has recently ordered US Cyber Command to pause offensive cyber operations against Russia. The government allegedly paused cyber operations against Moscow to support negotiations related to the ongoing Ukraine-Russia conflict.
The New York Times and The Washington Post later confirmed the policy shift is temporary, lasting only during negotiations to end Russia’s invasion of Ukraine.
The US Agency CISA confirms no change in countering Russia-linked APT groups, despite a Trump administration directive pausing offensive cyber operations during key negotiations.
“CISA’s mission is to defend against all cyber threats to U.S. Critical Infrastructure, including from Russia. There has been no change in our posture. Any reporting to the contrary is fake and undermines our national security.” reads the message published by the agency on X.
CISA’s mission is to defend against all cyber threats to U.S. Critical Infrastructure, including from Russia. There has been no change in our posture. Any reporting to the contrary is fake and undermines our national security.
— Cybersecurity and Infrastructure Security Agency (@CISAgov) March 3, 2025
The decision to halt offensive cyber actions has ignited debate, weighing the need for diplomacy against the risk of exposure to cyber attacks by foreign threat actors.
The agency is undergoing a leadership transition after director Jen Easterley’s departure.
CISA was established in 2018 under the first Trump administration, the agency evolved from the National Protection and Programs Directorate (NPPD) to safeguard critical infrastructure from cyber and physical threats. Initially focused on energy grids, water, and communications, it later prioritized election security. Under Biden, Jen Easterly refined its role in countering foreign influence while expanding cybersecurity efforts for the 2024 elections.
Jen Easterly prioritized workforce diversity, aiming for 50% women in cybersecurity by 2030, and supported Ukraine against Russian cyberattacks. Though she strengthened CISA’s resilience, her misinformation and election security efforts faced criticism.
The agency is currently in the midst of a leadership change following the departure of director Jen Easterley. Under Trump, CISA may refocus on core cybersecurity, cutting non-essential programs. The next director must balance reforms with national security needs.
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, CISA)
