President Joe Biden is set to sign an executive order aimed at bolstering America's cyber defenses following a series of cyberattacks on federal networks attributed to Chinese and Russian operatives. The directive, the result of a comprehensive review by US officials, addresses key hacking incidents during the Biden administration, including Russia's alleged disruption of a satellite provider and China's infiltration of US telecom networks.
The primary objective of the executive order is to enhance the nation's cybersecurity posture and make it more challenging for countries like China, Russia, Iran, and ransomware criminals to engage in hacking activities. The order mandates the use of stronger encryption to safeguard federal employees' communications and grants additional authority to the Department of Homeland Security's cyber agency to investigate sophisticated hacking operations.
In addition, the order introduces measures to combat identity fraud, leverage artificial intelligence to protect the energy sector from cyber threats, and empower the Treasury Department to sanction cybercriminals who target critical US infrastructure. The Biden administration has expressed concerns about lax security practices in software firms selling to the government, citing a review of Microsoft's security protocols that revealed vulnerabilities exploited by Chinese hackers.
Previously, Biden issued a cybersecurity order requiring contractors to meet minimum security standards, and the new directive now mandates contractors to provide proof of compliance with secure development requirements. This information will be made publicly available online to enhance transparency and accountability.
While cybersecurity has traditionally enjoyed bipartisan support, the stance of the incoming Trump administration on the executive order remains uncertain. The new national security adviser, Mike Waltz, has advocated for more offensive cyber operations, but specific strategies for cyber defense have yet to be outlined.
