In a recent development, concerns have been raised regarding a purported shift at the US Cybersecurity and Infrastructure Security Agency (CISA) away from reporting on Russian threats. The issue came to light after The Record released a report on the matter, which was later corroborated by The Guardian.
According to The Guardian’s report, CISA allegedly circulated an internal memo outlining new priorities for the agency, with a notable exclusion of Russia from the list of threats to focus on. Sources revealed that analysts within the agency were verbally instructed not to monitor or report on Russian threats, raising eyebrows among cybersecurity experts and officials.
This purported shift at CISA coincided with a speech delivered by Liesyl Franz, the deputy assistant secretary for international cybersecurity at the State Department, before a UN cybersecurity working group. In her address, Franz emphasized the concerns of the US regarding cybersecurity threats posed by certain countries, specifically naming China and Iran while omitting any mention of Russia. This departure from the usual practice of acknowledging Russian threats in such discussions has sparked speculation and debate within the cybersecurity community.
Notably, Franz also neglected to reference the LockBit ransomware group in her speech, despite the group being previously identified by the US as one of the most prolific ransomware threat actors globally. This omission further raised questions about the shifting priorities and messaging within the US government regarding cybersecurity threats.
In response to the uproar and speculations surrounding the alleged shift in focus, CISA took to social media to refute The Guardian’s report. In a post on X, the agency asserted that its mission remains unchanged, stating, “CISA’s mission is to defend against all cyber threats to U.S. Critical Infrastructure, including from Russia. There has been no change in our posture. Any reporting to the contrary is fake and undermines our national security.”
The conflicting narratives from different sources have only added to the confusion surrounding the situation. While CISA denies any change in its approach towards Russian threats, the initial reports and statements from insiders paint a different picture. The lack of clarity and transparency in communication from government agencies has fueled concerns about the handling of cybersecurity issues and the potential implications of such alleged shifts in focus.
As the cybersecurity landscape continues to evolve and new threats emerge, it is crucial for government agencies like CISA to maintain a proactive and vigilant stance against all potential adversaries, including Russia. Any perceived deviation from this principle could have far-reaching implications for national security and the protection of critical infrastructure. The ongoing debate and scrutiny surrounding this issue highlight the complexities and challenges faced in the realm of cybersecurity and the importance of clear and consistent messaging from authorities.