Written by: Haim Ravia, Dotan Hammer
On March 6, 2026, the Trump Administration released “President Trump’s Cyber Strategy for America” alongside an Executive Order titled “Combating Cybercrime, Fraud, and Predatory Schemes Against American Citizens.” Together, these documents articulate the Administration’s comprehensive cybersecurity posture, organized around the offensive disruption of adversaries, the deregulation of industry, and the protection of American citizens from transnational cybercrime.
The strategy document is structured around six policy pillars. The first, “Shape Adversary Behavior,” commits to deploying the full suite of U.S. government defensive and offensive cyber operations to detect, confront, and defeat cyber adversaries before they breach networks and systems. It pledges to erode adversary capacity and capabilities, use all instruments of national power to raise costs for aggression, and uproot criminal infrastructure while denying financial exit and safe haven. The strategy also commits to unleashing the private sector by creating incentives to identify and disrupt adversary networks.
The second pillar, “Promote Common Sense Regulation,” signals a markedly deregulatory approach. The strategy states that cyber defense “should not be reduced to a costly checklist that delays preparedness, action, and response,” and commits to streamlining cyber regulations to reduce compliance burdens, address liability, and better align regulators and industry globally. It promises to ensure that the private sector has the agility necessary to keep pace with rapidly evolving threats, while emphasizing the right to privacy for Americans and American data.
The remaining pillars address modernizing and securing federal government networks (including implementing post-quantum cryptography, zero-trust architecture, and AI-powered cybersecurity solutions), securing critical infrastructure and supply chains, sustaining superiority in critical and emerging technologies, and building cyber talent and capacity. Specifically on AI, the strategy commits to securing the AI technology stack—including data centers—and promoting innovation in AI security. It pledges to “swiftly implement AI-enabled cyber tools to detect, divert, and deceive threat actors” and to “rapidly adopt and promote agentic AI in ways that securely scale network defense and disruption.” The strategy also states that the Administration will “call out and frustrate the spread of foreign AI platforms that censor, surveil, and mislead their users” and will outcompete adversaries who sell “low-cost” AI and digital technologies carrying embedded censorship, surveillance, and ideological bias.
The accompanying Executive Order focuses on protecting American citizens from cybercrime, fraud, and predatory online schemes carried out by Transnational Criminal Organizations (TCOs). The order notes that these activities—including ransomware, malware, phishing, financial fraud, “sextortion,” impersonation, and other extortion schemes—are often coordinated campaigns aimed at the most vulnerable, and that foreign regimes frequently provide tacit state support, creating a shadow economy fueled by stolen identities, coercion, forced labor, and human trafficking.
The Executive Order directs the Trump cabinet members, in consultation with the Office of the National Cyber Director, to review existing operational, technical, diplomatic, and regulatory frameworks within 60 days, and to submit an action plan to the President within 120 days. The action plan must identify the TCOs responsible for scam centers and cybercrime and propose solutions to prevent, disrupt, investigate, and dismantle them. Notably, the order mandates the creation of an operational cell within the National Coordination Center to coordinate federal efforts to detect, disrupt, dismantle, and deter cyber-enabled criminal activity—including by involving the private sector as appropriate. The plan must also describe how the Attorney General and the Secretary of Homeland Security, supported by the Secretary of War, will use threat intelligence and operational insights from commercial cybersecurity firms to enhance attribution, tracking, and disruption of malicious cyber actors.
The White House also released its National Policy Framework for Artificial Intelligence — a four-page legislative blueprint urging Congress to adopt a unified federal approach to AI regulation that would preempt most state AI laws. The Framework covers seven areas: child safety (age assurance, parental tools, applying existing child privacy laws to AI); community protections (preventing electricity cost increases from AI data centers, streamlining infrastructure permitting); creator rights (federal protection against unauthorized digital replicas, while leaving AI training/fair use questions to the courts and enabling voluntary licensing frameworks); consumer protections; national security; workforce development; and federal preemption of state laws deemed unduly burdensome. The Framework explicitly rejects creating a new federal AI regulatory body, instead channeling oversight through existing agencies. It was released two days after Senator Blackburn published a companion 300-page discussion draft of the “TRUMP AMERICA AI Act” that closely tracks these recommendations.
Click here to read President Trump’s Cyber Strategy for America.
Click here to read the Executive Order on Combating Cybercrime, Fraud, and Predatory Schemes Against American Citizens.
Click here to read the White House’s National Policy Framework on AI.
