Get the latest market trends in your inbox

Stay on top of the latest market trends and economic insights with the Axios Markets newsletter. Sign up for free.

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Denver news in your inbox

Catch up on the most important stories affecting your hometown with Axios Denver

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Des Moines news in your inbox

Catch up on the most important stories affecting your hometown with Axios Des Moines

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Minneapolis-St. Paul news in your inbox

Catch up on the most important stories affecting your hometown with Axios Minneapolis-St. Paul

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Tampa-St. Petersburg news in your inbox

Catch up on the most important stories affecting your hometown with Axios Tampa-St. Petersburg

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!

Photo: Saul Loeb/AFP via Getty Images

An internal memo on cybersecurity, obtained by Axios, warns that "the White House is posturing itself to be electronically compromised once again."

The state of play: That's after at least a dozen top- or high-level officials have resigned or been pushed out of a cybersecurity mission that was established under Barack Obama to protect the White House from Russian hacking and other threats, according to conversations with several current and former officials.

Why it matters: Warnings by officials from the former Office of the Chief Information Security Officer (OCISO) — which in July was folded into the Office of the Chief Information Officer (OCIO) — suggest new intelligence vulnerabilities. One White House official familiar with the developments said the consolidations could lead to a "Wild West" atmosphere.

Details: Many of the concerns are detailed in an Oct. 17 internal memo written by a senior White House cybersecurity director who is among the officials who have left the mission.

  • The memo doubled as a formal resignation letter by its author, Dimitrios Vastakis, who was the branch chief of the White House computer network defense. Vastakis did not respond to requests for comment.
  • Vastakis worked in the OCISO, established after Russian hackers breached some White House computers in 2014.
  • OCISO was created to "take on the responsibility of securing the Presidential Information Technology Community (PITC) network," per the internal memo.

The White House did not immediately respond to requests for comment.

  • A White House source familiar with the plans told me: "You have an entire section who’s dedicated to providing counter threat intelligence information" and "if you remove that, it’s like the Wild West again."

The president's team is trying to force out the career staff, especially the expert staff hired under Obama, according to another source familiar with the changes. They said the effects could leave the White House vulnerable to a "network compromise."

The organizational structure for the cybersecurity mission going forward also raises questions about the continuity, oversight and retention of records that had been covered by the Presidential Records Act (PRA).

  • "It is highly concerning that the entire cybersecurity apparatus is being handed over to non-PRA entities," the memo says.
  • "This is a significant shift in the priorities of senior leadership, where business operations and quality of service take precedence over securing the President's network," the memo says. "As a career cyber security professional, this is alarming."

Some cybersecurity officials feel they're being pushed out.

  • OCISO staff are "systematically being targeted for removal from the Office of the Administration (OA) through various means," the memo says. Those included "revocation of incentives, reducing the scope of duties, reducing access to programs, revoking access to buildings, and revoking positions with strategic and tactical decision making authorities."
  • Several sources described growing internal resentment after it was announced two months ago that staff would no longer be receiving their annual bonuses on Oct. 1.
  • Others have left voluntarily for different opportunities. Joe Schatz, the former White House Chief Information Security officer, left the team in August for a technology consulting firm, according to a news release.

Read the memo

Go deeper

Ben Geman, author of Generate
5 mins ago - Energy & Environment

Trump sets auction for Arctic refuge drilling rights before Biden takes office

Photo: Win McNamee/Getty Images

The Interior Department on Thursday said it will auction oil drilling leases in Alaska's Arctic National Wildlife Refuge in early January.

Why it matters: The procedural step would make it harder for President-elect Joe Biden to thwart drilling in the region, even though any actual development is years away.

Rep. Sean Patrick Maloney elected chair of House Democrats' campaign arm

Rep. Sean Patrick Maloney. Photo: Tom Williams/CQ-Roll Call, Inc via Getty Images

Rep. Sean Patrick Maloney (D-N.Y.) on Thursday was elected chair of the Democratic Congressional Campaign Committee for the 2022 cycle, narrowly defeating Rep. Tony Cardenas (D-Calif.) 119 to 107, Politico reports.

Why it matters: Maloney will be tasked with protecting House Democrats' slim majority in 2022 after they underperformed in November's election, losing seats in down-ballot races across the country.

1 hour ago - Health

Vaccine shipment companies targeted by cyberattacks, IBM says

Illustration: Sarah Grillo/Axios

A global phishing campaign has been trying to gain information from organizations working to ship coronavirus vaccines since September, IBM's cybersecurity arm said on Thursday.

Why it matters: Successfully distributing a COVID vaccine will already be challenging for the U.S. and other wealthy countries, especially to rural areas with less resources — while poorer countries are expected to have delayed access.

Get Axios AM in your inbox

Catch up on coronavirus stories and special reports, curated by Mike Allen everyday

Please enter a valid email.

Please enter a valid email.

Subscription failed
Thank you for subscribing!