According to a source familiar with the matter, Defense Secretary Pete Hegseth has directed U.S. Cyber Command to cease offensive cyber operations and information activities against Russia. Hegseth issued this order to Air Force Gen. Tim Haugh, the head of the command, in late February. The duration of the order remains unclear at this time. A senior U.S. defense official chose not to provide details on the decision, citing operational security concerns.
The safety of military personnel in all operations, including the cyber domain, is of utmost importance to Secretary Hegseth, as conveyed by an official to NBC News. The U.S. Cybersecurity and Infrastructure Security Agency, part of the Department of Homeland Security, reaffirmed its commitment to defending against cyber threats to critical infrastructure, including those from Russia.
At the time of writing, there has been no response from U.S. Cyber Command or the Russian Embassy regarding Hegseth’s directive. This action was initially reported by The Record. President Donald Trump has been working to restore diplomatic ties with Russia, with recent moves including bolstering embassy staff and engaging in peace talks with Russian representatives in Saudi Arabia.
The relationship between Trump and Ukrainian President Volodymyr Zelenskyy encountered a setback following a meeting involving Vice President JD Vance. This led to a delay in signing an agreement giving the U.S. a significant stake in Ukraine’s rare-earth minerals. Senate Minority Leader Chuck Schumer criticized the decision to halt offensive cyber operations against Russia, suggesting it was a move to gain favor with Putin.
The Biden administration previously labeled Russia as a persistent global cyber threat, citing cyberattacks on U.S. entities such as government agencies, energy sectors, and think tanks. The Office of the Director of National Intelligence highlighted Russia’s use of cyber disruptions as a tool for influencing decisions and maintaining capabilities to target critical infrastructure.
The assessment from U.S. intelligence points out that Russia remains a significant global cyber threat, particularly as it gives priority to cyber operations in the context of the Ukrainian war. According to Microsoft, Russia has notably escalated its cyber activities in recent times, with a main focus on targeting Ukraine and NATO countries. Specifically, Russian threat actors have been concentrating their efforts on infiltrating and stealing intelligence from Ukrainian military personnel and their international suppliers of weaponry. The methods utilized in these operations have the potential to inadvertently cause harm by posing risks to computer networks worldwide, as highlighted in Microsoft’s 2024 digital defense report.
Furthermore, the report also brings attention to Russian cyber campaigns aimed at influencing the upcoming 2024 presidential election, a matter that has led to sanctions being imposed by the Biden administration.
