CISA Withdraws Funding for State and Election Threat-Sharing Centers

Government,
Incident & Breach Response,
Industry Specific

Cyber Defense Agency Cuts Funding for Critical Cybersecurity Resource Amid Shift in Federal Focus

CISA Defunds Threat-Sharing Hubs for States and Elections
The federal government has ceased funding for a hub that provided real-time cybersecurity threat intelligence to state and local governments. (Image: Shutterstock)

The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has terminated approximately $10 million in annual funding for two vital national cybersecurity centers, which have been instrumental in delivering real-time threat intelligence to state and local governments. This decision aligns with broader efforts by the Trump administration to reduce federal spending.

A representative from CISA confirmed the cessation of funding for both the Multi-State Information Sharing and Analysis Center (MS-ISAC) and the Election Infrastructure Information Sharing and Analysis Center (EI-ISAC). According to the spokesperson, the agency emphasizes “good stewardship of taxpayer dollars,” implying that supporting these centers no longer aligns with current departmental priorities.

The funding was part of a cooperative agreement with the Center for Internet Security, a body that has significantly strengthened the cybersecurity posture of various jurisdictions by offering a 24/7 operations center, continuous network and endpoint monitoring, free cybersecurity services, and specialized support for election security.

According to CISA officials, several initiatives previously managed by these centers—including stakeholder engagement, cyber threat intelligence sharing, and incident response—are being scaled back. Experts express concern that such funding cuts, combined with the agency’s uncertain future and the growing cybersecurity talent gap in the U.S., could significantly expose critical infrastructure to cyber threats.

Previously, CISA characterized the EI-ISAC as a “voluntary, collaborative partnership” designed to foster information sharing and collaboration among state, local, and federal entities. This framework was critical for fortifying defenses against threats to election infrastructure, a key area of national security.

The administration’s ongoing shift in priorities raises questions about the future of election system security. Reports indicate that the current White House may be diminishing efforts to secure election systems and rolling back protections against misinformation, both essential to maintaining the integrity of U.S. elections.

A leading cybersecurity official during the earlier Trump administration recently warned that the ongoing purges of federal cybersecurity personnel pose a serious risk not only to cybersecurity but to national security as a whole. The anticipated realignment of agency priorities under the leadership of newly nominated Sean Plankey, who has a robust background in cybersecurity from both the Department of Energy and the National Security Council, signals a potential shift in focus at CISA.

In light of these developments, it is important for business owners to consider the implications of diminishing federal support for cybersecurity resources. The lack of funding for pivotal institutions like the MS-ISAC and EI-ISAC may allow hostile actors to exploit vulnerabilities within critical infrastructure, potentially employing tactics such as initial access, privilege escalation, and data exfiltration from frameworks defined by the MITRE ATT&CK Matrix.

This situation calls for increased vigilance and possibly reassessing organizational security postures to mitigate risks stemming from a compromised cybersecurity landscape, especially considering the evolving threat environment that could be exacerbated by these recent funding decisions.

Source link