Spike in Cyber Attacks Amidst U.S Government Shut Down

Executive Summary

Government shutdowns significantly weaken federal cybersecurity defenses, creating exploitable vulnerabilities across critical systems. Instability increases the likelihood of successful cyber incidents, damages national credibility, and threatens both domestic and international trust. Prioritizing the Protecting America from Cyber Threats Act would restore information-sharing capabilities and cybersecurity coordination. Maintaining continuous cyber operations during government disruptions remains the best practice for national security and resilience. 

Background

The United States entered a government shutdown starting on October 1, 2025, leaving an impact on government cybersecurity practices and vulnerability. Cyber incidents resulting from digital and social engineering attack methods have increased by 85% compared to the previous month [1]. Many of the victims are employees who are currently working with no compensation, making them a target for social engineering tactics relating to finances, job opportunities, and stability as a result of current stress and uncertainty. Lack of defenses for digital attacks due to the absence of workers has allowed digital incidents to spike as a result of decreased monitoring and response across federal networks. 

The Cybersecurity and Infrastructure Security Agency (CISA), which protects government infrastructures from cyberattacks, and the Cybersecurity Information Sharing ACT (CISA Act), which provides legal safeguards and liability immunities to promote information sharing between organizations and the U.S government, have both been damaged by the shutdown. Just 35% of employees in CISA would be allowed to continue working without pay, with the remainder being furloughed, meaning most staff would be unable to maintain operations and support ongoing cybersecurity objectives [2]. The CISA Act has been in effect for the last 10 years has lapsed due to its expiration the day before the shutdown, leaving companies less inclined to share information given the potential legal risks. Without these safeguards, the government is seen as vulnerable and therefore has led to an increase in cyber incidents. 

Impact

Short-term impacts of a government shutdown are the decrease in internal government security, a lack of salary, and instability for essential government workers. However, there are also lasting negative effects, such as foreign partnerships that were built and help offered by the U.S internationally in the cybersecurity environment being significantly reduced from a lack of engagement and coordination [3]. Through CISA, there have been divisions such as the International Affairs Team, which supported the international sharing of technology and information, which benefited all parties, and which has now been dismantled as a result of the shutdown. A lack of information exchange can stall collective growth and adaptability in our understanding of cybersecurity.

Mitigation

A solution that has been offered is called the “Protecting America from Cyber Threats Act,” a bill that was introduced in response to the CISA Act lapsing. It is essentially an extension and renaming of its predecessor that seeks the same goal of assisting the voluntary exchange of information between organizations and the government to understand potential threats and mitigate vulnerabilities [4]. The passing of this bill would provide another ten years of support, but it could take time due to the current standstill of government activities. Priorities should be on educating government users on what tactics are being used most currently and what to be aware of during these times. Ensuring that cybersecurity operations and education continue despite legislative and operational delays is vital to sustaining the nation’s cyber defences.

Relevance

Government shutdowns create vulnerabilities that threat actors are inevitably going to exploit. The short and long-term effects that are felt internally by workers and citizens, but also with our foreign alliances. Cybersecurity is at the forefront of global conversation, and creating unreliability and uncertainty around security practices can negatively impact the U.S’s image and reputation. A stable government framework is the foundation of both national security and international trust.

References

[2] Geller, E. (2025, September 29). CISA to furlough 65% of staff if government shuts down this week. Cybersecurity Dive. https://www.cybersecuritydive.com/news/cisa-government-shutdown-plan-employees/761365/

[3] Geller, E. (2025, October 22). CISA’s international, industry and academic partnerships slashed. Cybersecurity Dive. https://www.cybersecuritydive.com/news/cisa-stakeholder-engagement-division-layoffs-critical-infrastructure-international/803433/

[4] Minority News. (2025, October 9). Peters & Rounds Introduce Bipartisan Bill to Restore Critical Cybersecurity Protection. Homeland Security & Governmental Affairs. https://www.hsgac.senate.gov/media/dems/peters-rounds-introduce-bipartisan-bill-to-restore-critical-cybersecurity-protections/ 

[1] Nelson, N. (2025, October 24). Shutdown Sparks 85% Increase in US Government Cyberattacks. DarkReading. https://www.darkreading.com/cybersecurity-operations/shutdown-increase-us-government-cyberattacks