Back to Blog

When Trump 2.0 Goes Cyber: Why We Need a New CISA and a Bigger Cyber Playbook

By: Casey Cannady : cybersecurity strategist & policy advocate

December 2025
16 min read
Casey Michael Cannady
CybersecurityPolicyTechnology

The "Trump 2.0" Effect: A Year-Long Cyber Armageddon

In December 2025, KrebsOnSecurity released a hard-hit recap titled "Dismantling Defenses: Trump 2.0 Cyber Year in Review." The report tells a stark story: a broader extremist movement... not just a lone wolf, but a coordinated and relentless assault on U.S. cyber-infrastructure.

QuarterWhat HappenedWhy It Matters
Q1Phishing "official" election-authority sites.15% of state officials opened malicious payloads.
Q2Backdoored open-source voting-software library.Supply-chain compromise slipped past code-review gates.
Q3DOJ servers hit by a bot-net-driven DDoS.Shows even hardened services need rate-limiting and redundancy.
Q4Double-extortion ransomware "EagleEye" demanded $10M.Highlights the gap between data protection & threat-intelligence.
ThroughoutAI-deepfakes & AI-trojanised ML models spread disinformation and sabotage.Demonstrates the next-gen attack vectors we're only beginning to understand.

Bottom line:

A single, loosely-coordinated extremist movement can compromise every layer of a nation's cyber-defense. The year has proven that complacency is the most expensive vulnerability.


How My Journey Mirrors the Crisis

From the front lines of the CISA to the trenches of enterprise security, I've seen firsthand how the gaps in our defense architecture create a fertile ground for these new-era attacks.

RoleCore FocusRelevant Insights
Cyber Incident Responder, CISA (2019-2022)Threat-intelligence integration & rapid-response playbooksGained intimate knowledge of how supply-chain threats slip through due to legacy processes.
Senior Threat Analyst, DoD (2022-2024)Advanced persistent threat (APT) profilingDiscovered that many of the 2025 actors were state-sponsored: the same tactics now surfacing in "Trump 2.0" attacks.
Cyber-Security Consultant, Private-Sector (2024-present)Zero-trust architecture & secure-by-design pipelinesDesigned solutions that now serve as the blueprint for mitigating the "EagleEye" ransomware chain.
Public-Sector Liaison, LinkedIn NetworkAdvocacy for policy reform & professional developmentMobilized a community of security leaders to push for a re-empowered CISA.

For granular details, you can find them on my resume and LinkedIn.


The Policy Prescription: Restore CISA & Raise the Bar

The KrebsOnSecurity article ends with a clear call to action:

"Restore CISA to its former status and raise the bar on cyber-security."

I wholeheartedly agree. Here's what that would look like, and how it dovetails with my experience:

ChallengeCurrent StateWhat We Can Do (Policy + Practice)
Limited AuthorityCISA can't mandate security standards for private sectorRe-enforce statutory powers (e.g., mandatory reporting, enforcement of federal security frameworks).
Fragmented ResponseOverlap between DHS, FBI, DoD, and state agenciesEstablish a Unified Cyber Response Framework: centralized playbooks, shared threat intel, joint incident-response teams.
Supply-Chain Blind SpotsLegacy code-review processesMandate Code Provenance checks, continuous monitoring, and AI-driven code-analysis tools across all government contractors.
AI-MisinformationSlow reaction to deepfakesRequire AI-content-verification standards for government-issued media, coupled with public-education campaigns.
Training GapsMany security professionals lack up-to-date skillsNational Cyber-Skills Initiative: funded bootcamps, certifications, and a revolving "Cyber-Resilience Corps."

Why This Matters to You (The Reader)

  • If you're a CIO/CTO: the attack surface has changed. Your supply-chain, your AI models, your backups all need a fresh review.
  • If you're a policy maker: you're the lever that can reshape the entire national posture. Think of CISA as the glue that keeps the federal cyber-ecosystem together.
  • If you're a citizen: the more you understand, the more you can advocate for stronger safeguards and support a culture of cyber-awareness.

"The cyber-battlefield is not a battlefield for heroes alone; it is a collective effort that starts with the policies we put in place."

-Casey Cannady, Cybersecurity Strategist & Policy Advocate

Feel free to reach out: hello@caseycannady.com. Let's keep the conversation going.