President Joe Biden issued an executive order on Thursday aimed at strengthening the nation’s cybersecurity and making it easier to go after foreign adversaries or hacking groups that try to compromise US internet and telecommunication systems.
Provisions in the order call for the development of minimum cybersecurity standards for government technology contractors and require that contractors submit evidence that they’re complying with the rules.
They also are aimed at making it easier for US authorities to sanction foreign governments that target the U.S. with cyberattacks — a change that comes after several recent hacking incidents linked to China, Iran, Russia and North Korea. Among other changes, the order allows sanctions to be imposed on foreign hackers who target hospitals or other organizations with ransomware.
The order also requires federal agencies to improve cybersecurity to protect against the threat posed by powerful quantum computers, which cyber experts say could be used to easily break into many systems. It’s an issue that could have direct national security implications if a foreign adversary builds a computer sophisticated enough to break American codes.
The White House issued the order just days before Biden, a Democrat, leaves office. Republican President-elect Donald Trump’s administration could rescind the policy in favor of its own proposals. But deputy national security adviser Anne Neuberger said the order’s twin goals — strengthening cybersecurity and punishing those responsible for cyberattacks — should win bipartisan support.
The order is intended to show that “America means business when it comes to protecting our businesses and our citizens,” Neuberger said while briefing reporters on the new policies.
The policies build on several earlier actions by the Biden administration intended to boost defenses against cyber intrusions — whether they target the government, critical infrastructure like ports or power plants, U.S. businesses or individual users.
Earlier this month, the White House announced a labeling program designed to help consumers pick smart devices that are more resistant to hacking. Under the cyber trust mark program, manufacturers of internet-connected devices can attach the label to let buyers know the product meets federal cybersecurity standards.
Trump has not announced his picks for top national cybersecurity positions. John Ratcliffe, Trump’s nominee to be CIA director, said Wednesday during his Senate confirmation hearing that it’s essential the U.S. improve its defensive and offensive cyber capabilities to keep up with China and other adversaries.
“We have the best code makers and code breakers in the world,” Ratcliffe said of American spy agencies. “But if China gets to quantum computing before we do, that’s a real problem.”
Related: UK Considers Banning Ransomware Payment by Public Sector and CNI
Related: China Targeted Foreign Investment, Sanctions Offices in Treasury Hack
Related: 2025 NDAA Provides $3 Billion Funding for FCC’s Rip-and-Replace Program
