US suspends offensive cyber operations against Russia, senior US official says

According to a report by CNN, a senior U.S. official revealed that the United States has suspended cyberattack operations and the formulation of related plans targeting Russia. This move has attracted attention and may impact the future cybersecurity posture of the United States. The suspension raises questions about the balance between offensive and defensive cyber strategies.

The official stated that suspending these operations is a "significant blow," especially considering the extensive time and effort required to research, plan, and execute such actions. Halting these operations could make the United States more vulnerable to potential cyberattacks from Moscow, given Russia's strong hacking capabilities, enabling them to disrupt critical U.S. infrastructure and steal sensitive intelligence. This vulnerability necessitates a reevaluation of U.S. cyber defenses.

The suspension of actions by U.S. Cyber Command, the military branch responsible for offensive and defensive cyber operations, comes as the Trump administration seeks to ease relations with Russia, despite the three-year-long war in Ukraine. Simultaneously, President Trump and Vice President JD Vance reportedly harshly rebuked Ukrainian President Zelensky in the Oval Office, creating uncertainty in U.S.-Ukraine relations. These geopolitical shifts add complexity to the cyber strategy landscape.

A senior Defense Department official told CNN, "For operational security reasons, we do not comment on or discuss cyber intelligence, plans, or operations." He added, "For Secretary of Defense Hagesses, nothing is more important than protecting the safety of warriors in all operations, including in the cyber domain." Previously, The Record was the first to report the news of Cyber Command suspending Russia-related plans. The emphasis on operational security underscores the sensitivity of cyber activities.

Former Cyber Command official Jason Kikta told CNN, "It is not uncommon for the Pentagon to suspend actions (including cyberattack operations) that could have a destabilizing or provocative impact on negotiations. But if planning is also suspended, it could cause offensive options to become obsolete, thereby losing feasibility." Kikta added, "Any extended period of not checking access and updating plans could lead to losing access or missing critical changes." However, he stated that he was personally unaware of any changes to the operational status of Cyber Command. Maintaining up-to-date cyber capabilities is essential for effective defense.

Current and former U.S. officials say that Russia and the United States are in a state of normalized confrontation in cyberspace. The Kremlin views cyberspace as a source of asymmetric advantage in its confrontation with the United States, as it can penetrate U.S. critical infrastructure and attempt to influence U.S. elections. U.S. military and intelligence hackers have also increasingly targeted Russian cybercriminals and intelligence personnel in recent years. This ongoing cyber conflict necessitates constant vigilance and adaptation.

Since 2016, when Russia used bots, cyber troops, and hackers to try to influence the U.S. election, Moscow has repeated this tactic in some form in every U.S. presidential election. Cyber Command was established more than a decade ago, in part to address threats from Russia and other foreign powers. Since its inception, the command has grown into a powerful force of thousands of computer operators responsible for carrying out offensive and defensive missions. Cyber Command's growth reflects the increasing importance of cybersecurity.

Cyber Command, headquartered at Fort Meade, Maryland, adjacent to the National Security Agency, has increasingly become a tool for U.S. power projection. The command has sent experts to allies around the world to help them defend against threats from cybercriminals and spies. This included a visit to Ukraine in December 2021, before Russia's full-scale invasion, to help Kyiv prepare for Russian cyberattacks. Months after Russia's full-scale invasion of Ukraine, Cyber Command confirmed that it was actively involved in helping Ukraine defend itself through cyberattacks. International cooperation is crucial in combating cyber threats.

Despite the changes in Cyber Command's planning, another major federal cybersecurity agency said it would not change its posture. The U.S. Cybersecurity and Infrastructure Security Agency (CISA), the primary civilian agency responsible for protecting federal networks from hacking, said on X late Sunday that its mission is to "defend against all cyber threats to U.S. critical infrastructure, including those from Russia." The agency stated, "Our posture has not changed." This was apparently in response to media reports that the agency was emphasizing non-Russian threats. "Any reporting to the contrary is false and undermines our national security." CISA's reaffirmation of its mission provides reassurance amidst strategic shifts.