Cyber Command, established more than a decade ago, has significantly expanded its capabilities in recent years
The United States has paused its offensive cyber operations against Russia, a move that could leave the country more vulnerable to potential cyberattacks from Moscow, according to a senior US official.
The decision, which includes halting both active operations and planning for future missions, comes as the Trump administration seeks to improve diplomatic relations with Russia amid the ongoing war in Ukraine. However, the pause has raised concerns within the US security community, as Russian hackers are known for their capability to target critical infrastructure and gather sensitive intelligence.
The official described the suspension as “a major blow,” highlighting that planning for offensive cyber operations requires extensive time and research. The halt could weaken the US’s cyber defences and its ability to preempt Russian cyberattacks.
The pause affects the operations of US Cyber Command, the military’s cyber warfare unit responsible for both offensive and defensive missions. The Record was the first to report the suspension of Cyber Command’s planning against Russia.
A senior defence official, referring to Defence Secretary Pete Hegseth, told CNN, “Due to operational security concerns, we do not comment nor discuss cyber intelligence, plans, or operations. There is no greater priority to Secretary Hegseth than the safety of the warfighter in all operations, to include the cyber domain.”
Experts warn that the decision could have far-reaching consequences. Jason Kikta, a former Cyber Command official, said, “It is not uncommon for the Pentagon to pause actions which are potentially destabilising or provocative for negotiations, including cyber-effects operations. But if a planning pause was also directed, that could cause offensive options to become stale and therefore nonviable.”
Cyber Command, established more than a decade ago, has significantly expanded its capabilities in recent years. The unit works alongside the National Security Agency at Fort Meade, Maryland, and plays a crucial role in defending US networks and projecting American cyber power globally.
The command has been actively involved in helping Ukraine defend against Russian cyberattacks since December 2021, months before Russia’s full-scale invasion. It also targets ransomware gangs, many of which operate from Russia, that extort millions of dollars from US businesses and endanger public services like hospitals.
Despite the operational pause, the US Cybersecurity and Infrastructure Security Agency (CISA) clarified that its defensive posture remains unchanged. The agency stated on social media platform X, “Our mission is to defend against all cyber threats to US Critical Infrastructure, including from Russia. There has been no change in our posture. Any reporting to the contrary is fake and undermines our national security.”
The suspension comes amid heightened geopolitical uncertainty, with President Donald Trump and Vice President JD Vance reportedly berating Ukrainian President Volodymyr Zelensky during a recent Oval Office meeting, casting doubt on the future of US-Ukraine relations.
Cybersecurity experts warn that any prolonged pause in offensive operations could allow Russian hackers to exploit vulnerabilities in US systems. “Any extended period without checking on access and updating planning risks losing that access or missing a critical change,” Kikta added.
The temporary halt reflects the delicate balance between diplomacy and national security as the US navigates its complex relationship with Russia in the evolving landscape of cyber warfare.
