US Halts Offensive Cyber Operations Against Russia

U.S. Cyber Operations Against Russia Temporarily Suspended

Reports indicate that the United States has paused its offensive cyber activities targeting Russia. This action is reportedly linked to the Trump administration’s attempts to secure concessions from Moscow in order to facilitate an end to the conflict in Ukraine.

Authorization and Scope of the Suspension

According to The Record, the directive to cease U.S.-initiated hacking operations against Russia was authorized by U.S. Defense Secretary Pete Hegseth. This guidance specifically impacts operations conducted by U.S. Cyber Command, the Department of Defense’s division responsible for cyberspace operations and hacking.

It’s important to note that this order does not extend to espionage activities carried out by the National Security Agency.

Confirmation from Multiple Sources

The New York Times and The Washington Post have independently corroborated the reports regarding the suspension of offensive cyber operations.

Timing and Strategic Context

The order was issued prior to a meeting held in the Oval Office on Friday. Participants included U.S. President Donald Trump, Vice President JD Vance, and Ukrainian President Volodymyr Zelenskyy.

The New York Times suggests this instruction was part of a larger strategy aimed at initiating dialogue with Russian President Vladimir Putin concerning the ongoing war in Ukraine.

Official Responses

Neither U.S. Cyber Command nor the Pentagon responded to inquiries from TechCrunch. However, a senior defense official stated that they do not publicly discuss cyber intelligence, plans, or operations.

Shifting Perceptions of Russian Cyber Threats

The Guardian reports that the Trump administration has signaled a change in its assessment of Russian hackers, no longer considering them a primary cybersecurity threat.

Consequently, U.S. cybersecurity agency CISA was reportedly instructed to cease reporting on threats originating from Russia. A recent memo outlined new priorities for CISA, focusing on threats from China and the protection of local systems, without mentioning Russia.

CISA employees were allegedly informed verbally to temporarily halt all work related to Russian cyber threats.

Department of Homeland Security Response

The Department of Homeland Security, which oversees CISA, refuted The Guardian’s report in a statement to TechCrunch.

Tricia McLaughlin, assistant secretary of Homeland Security, clarified that the memo did not originate from the Trump administration. She affirmed that “CISA remains committed to addressing all cyber threats to U.S. critical infrastructure, including from Russia.”

McLaughlin further emphasized, “There has been no change in our posture or priority on this front.”

Contradiction with Intelligence Assessments

This reported policy shift comes only months after the U.S. intelligence community identified Russia as an “enduring cyber threat” to the United States.

The annual threat assessment warned that Russia’s Foreign Intelligence Service (SVR) continues to target U.S. government agencies and vital infrastructure, including underwater cables and industrial control systems.

Previous Actions Against Russian Cybercriminals

In recent years, the U.S. government has actively taken measures against numerous Russian cybercriminals.

Successful disruption of infrastructure linked to Russia-based ransomware groups.
Recovery of millions of dollars in ransom payments made to Russian hackers.
Indictments and sanctions levied against some of Russia’s most notorious hackers.