U.S. Allocates $1B for Offensive Cyber Operations Amid Budget Cuts

Edward Zhou
Edward Zhou

CEO & Co-Founder

 
July 15, 2025
3 min read

U.S. Cyber Operations Budget Allocation

Offensive Cyber Operations Funding

The Trump administration has allocated $1 billion for offensive cyber operations over the next four years. This funding is part of the larger One Big Beautiful Bill aimed at enhancing the capabilities of the U.S. Indo-Pacific Command. Critics, including Sen. Ron Wyden, have raised concerns about this funding, especially given that it coincides with a $1 billion cut to the U.S. cyber defense budget, which has already faced substantial reductions.

money

Image courtesy of TechCrunch

Sen. Wyden stated, “The Trump administration has slashed funding for cybersecurity and government technology and left our country wide open to attack by foreign hackers.” The offensive cyber operations may include a variety of tactics such as zero-day exploits and spyware deployment, aimed at U.S. adversaries like China, which has been implicated in numerous cyberattacks.

Cybersecurity Allocations in the NDAA

The National Defense Authorization Act (NDAA) earmarks approximately $30 billion for military cybersecurity in fiscal 2025. This budget includes provisions to eliminate potentially harmful Chinese technology from U.S. telecom networks and protect military devices from foreign spyware.

data center cybersecurity security military monitor men

Image courtesy of CSO Online

Key provisions of the NDAA include:

  • $3 billion to assist in replacing Chinese telecom gear, including products from Huawei and ZTE.
  • Guidelines for protecting Department of Defense mobile devices from foreign spyware.
  • Establishment of an artificial intelligence security center within the NSA to develop secure AI practices.

Additional proposals focus on creating a robust risk framework for mobile applications used by military personnel and limiting funds for the Joint Cyberwar Warfighting Architecture until further planning is presented.

Biden Administration's Cybersecurity Budget Request

The Biden administration is seeking $13 billion for cybersecurity across various departments, which marks an increase from previous years. This budget includes a specific request for $3 billion for CISA (Cybersecurity and Infrastructure Security Agency) to implement new cyber incident reporting rules and enhance capabilities.

CISA's funding will support several initiatives, including:

  • $1.7 billion for cybersecurity programs, including $394 million for the Joint Collaborative Environment (JCE).
  • $469.8 million for the Continuous Diagnostics and Mitigation (CDM) program.
  • Implementation of the Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA).

Additionally, the Department of Health and Human Services is proposing $800 million to help improve cybersecurity practices among hospitals.

Implications of Cyber Operations Funding

The juxtaposition of increased funding for offensive cyber operations alongside cuts to defensive measures raises concerns about national security. As offensive measures are enhanced, it remains critical to ensure robust defenses to protect critical infrastructure from potential retaliatory cyberattacks.

Understanding the complexities of these funding decisions is vital for stakeholders, especially those in sectors vulnerable to cyber threats. The ongoing evolution of U.S. cybersecurity strategy demands attention to both offensive and defensive capabilities to maintain national security.

For further details on cybersecurity funding and operations, visit the relevant resources linked above.

Edward Zhou
Edward Zhou

CEO & Co-Founder

 

CEO & Co-Founder of Gopher Security, leading the development of Post-Quantum cybersecurity technologies and solutions.

Related News

NIST Standards Drive 2026 Mandates for Securing AI Infrastructure and Model Context Protocol Deployments
NIST AI Risk Management Framework

NIST Standards Drive 2026 Mandates for Securing AI Infrastructure and Model Context Protocol Deployments

Prepare for 2026 NIST AI mandates. Learn how to secure autonomous agents and Model Context Protocol (MCP) deployments against evolving enterprise security threats.

By Alan V Gutnov June 11, 2026 6 min read
common.read_full_article
Active Directory Certificate Services Now Supports Post-Quantum Cryptography for Windows Environments
Post-Quantum Cryptography AD CS

Active Directory Certificate Services Now Supports Post-Quantum Cryptography for Windows Environments

Microsoft adds Post-Quantum Cryptography (PQC) to AD CS. Learn how ML-DSA and hybrid key exchanges protect Windows environments against Harvest Now, Decrypt Later.

By Edward Zhou June 12, 2026 4 min read
common.read_full_article
Enterprises Face 2026 Deadline for NIST-Compliant Post-Quantum Cryptography Migration and Infrastructure Readiness
NIST post-quantum cryptography standards 2026

Enterprises Face 2026 Deadline for NIST-Compliant Post-Quantum Cryptography Migration and Infrastructure Readiness

Is your enterprise ready for the 2026 NIST PQC deadline? Learn how to mitigate Harvest Now, Decrypt Later threats and update your infrastructure to quantum-resistant standards.

By Brandon Woo June 10, 2026 7 min read
common.read_full_article
Cloud and Zero Trust Architecture Adoption Accelerate Modernization of Industrial Control Systems Security
industrial control systems zero trust

Cloud and Zero Trust Architecture Adoption Accelerate Modernization of Industrial Control Systems Security

Explore how Zero Trust Architecture and cloud adoption are transforming Industrial Control Systems (ICS) security to mitigate modern cyber threats.

By Alan V Gutnov June 9, 2026 4 min read
common.read_full_article