More spyware, fewer rules: what Trump’s return means for American cybersecurity

More spyware, fewer rules: what Trump’s return means for American cybersecurity

Trump is also unlikely to continue the Biden administration’s campaign limit the spread of commercial spyware technologieswhich one authoritarian governments have used to harass journalists, civil rights activists and opposition politicians. Trump and his allies maintain close political and financial ties with two of the most prolific users of commercial spyware tools, Saudi Arabia and the United Arab Emirates, and he showed little concern about human rights abuses by those governments during his first term.

“There’s a good chance we’ll see major rollbacks on spyware policies,” said Steven Feldstein, a senior fellow at the Democracy, Conflict, and Governance Program at the Carnegie Endowment for International Peace. Trump officials are likely more concerned about anti-terrorism arguments from spyware makers than digital rights advocates’ criticism of these tools.

Spyware companies “will undoubtedly have a more favorable audience under Trump,” says Feldstein – especially market leader NSO Group, which is closely tied to the Trump-aligned Israeli government.

Doubtful prospects

Other Biden cyber initiatives are also at risk, even if their fate is not so clear.

Bidens National Cybersecurity Strategy stressed the need for greater corporate responsibility, arguing that tech companies with sufficient resources must do more to prevent hackers from misusing their products in devastating cyber attacks. In recent years, CISA has launched a messaging campaign to encourage companies to make their products “safe by design”, created the Ministry of Justice a civil cyber fraud initiative to prosecute contractors who mislead the government about their security practices, and White House officials began considering proposals to do so hold software suppliers liable for malicious vulnerabilities.

This push for corporate accountability is unlikely to receive strong support from the new Trump administration, which will almost certainly be supplemented by former corporate executives hostile to government pressure.

Henry Young, senior policy director at the software trade group BSA, predicts that the secure-by-design campaign “will evolve to more realistically balance the responsibilities of governments, companies and customers, and hopefully eliminate finger-pointing in favor of collaborative efforts.” to avoid. to continue to improve safety and resilience.”

A Democratic government could have used the secure-by-design push as a springboard for new business rules. Under Trump, ‘secure by design’ will remain a rhetorical slogan at most. “The challenge will be to turn it into something more tangible,” the US cyber official said.

Breaking off at the edges

One groundbreaking cyber program cannot be easily abolished under a second Trump administration, but it can still be dramatically transformed.

In 2022, Congress passed a law requiring CISA to establish cyber incident reporting rules for critical infrastructure operators. CISA the text released of the proposed regulations in April, prompting an immediate backlash from industry groups who said it went too far. Corporate America warned that CISA was asking too many companies for too much information about too many incidents.

By admin

Leave a Reply

Your email address will not be published. Required fields are marked *