What Do the New Cybersecurity and AI Executive Orders Mean for Your Organization?

Key Takeaways

• The new cybersecurity and AI Executive Orders signal that cyber resilience is now a federal priority for public and private organizations. Executive Order 14390 targets cybercrime, fraud, scam centers, and transnational criminal organizations, while the June 2, 2026 AI Executive Order promotes AI innovation, AI-enabled cyber defense, and stronger protection for critical infrastructure.
• Critical infrastructure organizations should prepare for more attention, more information sharing, and more AI-enabled security resources. The AI Executive Order specifically names rural hospitals, community banks, and local utilities as examples of critical infrastructure operators that may receive access to cybersecurity tools, services, and covered frontier models.
• AI is now both a defensive cybersecurity tool and an emerging cyber threat vector. The June 2026 AI Executive Order directs federal agencies to expand AI-enabled defensive tools, create an AI cybersecurity clearinghouse, and prioritize enforcement against criminal actors who use AI to unlawfully access systems or data.
• Cyber-enabled fraud is creating measurable financial risk for organizations and consumers. The FTC reported that consumers lost more than $12.5 billion to fraud in 2024, while the FBI reported more than $16 billion in 2024 losses through the Internet Crime Complaint Center.
• Logically helps organizations close the gap between IT operations, cybersecurity, AI adoption, and executive risk management. Logically’s brand framework emphasizes unified IT and security, cyber-first design, resilience for modern risk, AI-assisted human-led expertise, and one accountable partner for clearer visibility and faster response.

Recent federal cybersecurity and artificial intelligence policy changes are raising expectations for how organizations manage cyber risk, AI adoption, fraud prevention, and critical infrastructure protection.

Executive Order 14390, “Combating Cybercrime, Fraud, and Predatory Schemes Against American Citizens,” was signed on March 6, 2026. The White House also issued the Executive Order “Promoting Advanced Artificial Intelligence Innovation and Security” on June 2, 2026. Together, these directives create a clearer federal framework for fighting cyber-enabled crime while promoting secure AI innovation.

At Logically, we help organizations understand what these directives mean for their security posture, AI risk, compliance readiness, and long-term resilience.

What Is Executive Order 14390?

Executive Order 14390 is a federal directive focused on combating cybercrime, fraud, scam centers, and predatory schemes targeting U.S. citizens, businesses, critical infrastructure, and public services.

The order targets transnational criminal organizations that use cyber-enabled fraud, ransomware, malware, phishing, impersonation, sextortion, and other schemes to exploit victims. It also directs federal agencies to improve coordination, strengthen enforcement, support victims, and increase pressure on foreign governments that tolerate predatory cyber activity.

Key provisions include:

• 60-day review: Federal agencies must assess existing operational, technical, diplomatic, and regulatory frameworks for combating cyber-enabled crime.
• 120-day action plan: Agencies must identify transnational criminal organizations responsible for scam centers and cybercrime, then propose solutions to prevent, disrupt, investigate, and dismantle those groups.
• National Coordination Center operational cell: A dedicated operational cell will coordinate federal efforts to detect, disrupt, dismantle, and deter foreign cyber-enabled criminal activity.
• Victim Restoration Program: The Department of Justice must recommend a program to return seized, forfeited, or clawed-back funds to victims of cyber-enabled fraud where allowed by law.
• Diplomatic consequences: Nations that tolerate predatory cyber activity may face sanctions, visa restrictions, trade penalties, foreign assistance limitations, and expulsion of complicit officials.

The scale of the problem is significant. In 2024, the FTC reported that consumers lost more than $12.5 billion to fraud, a 25% increase over 2023. The FBI also reported more than $16 billion in cybercrime losses through the Internet Crime Complaint Center in 2024.

What Is the June 2026 AI Executive Order?

The June 2, 2026 AI Executive Order promotes advanced artificial intelligence innovation while strengthening cybersecurity protections against AI-enabled threats.

The order states that advanced AI capabilities can strengthen the nation but also create new national security considerations. The policy direction is clear: accelerate AI adoption, use AI for cyber defense, protect sensitive systems, and prevent criminal actors from using AI to unlawfully access data or damage computers.

How Does the AI Executive Order Strengthen Cyber Defense?

The AI Executive Order strengthens cyber defense by directing federal agencies to prioritize AI-enabled security tools, critical infrastructure protection, vulnerability detection, and coordinated remediation.

Within 30 days of the order, federal leaders were directed to take action in several areas:

• CISA Binding Operational Directives: CISA must release directives and guidance to prioritize cyber defense of civilian federal systems, expand AI-enabled defensive tools, and facilitate access to cybersecurity tools and services.
• Critical infrastructure support: The order specifically references rural hospitals, community banks, local utilities, state and local authorities, and other critical infrastructure operators.
• AI cybersecurity clearinghouse: The Treasury Secretary, in consultation with NSA, CISA, and the National Cyber Director, must form a voluntary clearinghouse with AI industry participants and critical infrastructure operators.
• Vulnerability scanning and remediation: The clearinghouse will coordinate software vulnerability scanning, validate vulnerabilities, prioritize remediation, and support distribution of vulnerability patches.
• Federal grant review: OMB must determine whether relevant federal grant programs can fund applicants developing advanced AI vulnerability detection.

This direction reinforces the need for organizations to improve visibility, reduce exposure, and modernize vulnerability management before threats escalate.

What Are Covered Frontier Models?

Covered frontier models are advanced AI models with cyber capabilities that may create national security risks if released or misused.

The AI Executive Order establishes a framework for evaluating these models. It directs federal agencies to develop a classified benchmarking process, create a voluntary framework for AI developers, and allow developers to engage with the federal government before releasing qualifying models to trusted partners.

Key elements include:

• A classified benchmarking process to assess advanced cyber capabilities of AI models.
• A voluntary framework for AI developers to determine whether a model may qualify as a covered frontier model.
• Federal access to covered frontier models for up to 30 days before release to trusted partners.
• Collaboration between AI developers and federal agencies to support secure innovation.
• A clear statement that the order does not create mandatory licensing, preclearance, or permitting for AI model development or release.

How Does the AI Executive Order Address Criminal Use of AI?

The AI Executive Order directs the Attorney General to prioritize enforcement against criminal actors who use AI to illegally access systems, damage computers, or unlawfully access data.

This includes people who use AI agents to breach public or private information technology systems, access protected data, or support another criminal or unlawful purpose. For organizations, this reinforces the need to prepare for AI-enabled threats that can increase the speed, scale, and sophistication of attacks.

AI-enabled threats may include:

• AI-powered social engineering and phishing.
• Automated vulnerability discovery by adversaries.
• AI-generated deepfakes and impersonation.
• AI-assisted data theft and reconnaissance.
• AI agents used to access systems or information unlawfully.

What Do These Executive Orders Mean for Your Organization?

These Executive Orders mean organizations should treat cybersecurity, AI governance, vulnerability management, and incident readiness as connected business priorities.

The federal government is signaling that cybersecurity is not only a technical issue. Cybersecurity is a national security, operational resilience, fraud prevention, and executive risk management issue.

Why Is Critical Infrastructure a Priority?

Critical infrastructure is a priority because hospitals, banks, utilities, public services, and local systems are essential to economic stability, public safety, and community trust.

The AI Executive Order specifically names rural hospitals, community banks, and local utilities as examples of organizations that may need enhanced access to AI-enabled cybersecurity tools. If your organization operates in a critical infrastructure sector, expect increased focus on resilience, vulnerability management, information sharing, and AI-enabled cyber defense.

Why Is AI Both a Tool and a Threat?

AI is both a tool and a threat because defenders can use AI to improve detection, prioritization, and response, while attackers can use AI to scale phishing, automate reconnaissance, and exploit vulnerabilities faster.

Organizations should evaluate AI in two ways:

• Defensive AI: How can AI-assisted monitoring, vulnerability detection, and response improve security outcomes?
• AI-enabled risk: How could attackers use AI to target employees, systems, vendors, customers, or critical data?

At Logically, our approach is AI-assisted and human-led. AI accelerates insight, but experienced cybersecurity and IT experts guide decisions, response, remediation, and accountability.

Why Does Public-Private Collaboration Matter?

Public-private collaboration matters because cyber threats move faster than any single organization can manage alone.

Both Executive Orders emphasize coordination across government, industry, cybersecurity firms, AI developers, and critical infrastructure operators. Organizations should expect more opportunities to participate in information sharing, vulnerability coordination, public-private partnerships, and resilience programs.

How Will Vulnerability Management Change?

Vulnerability management will become more coordinated, AI-enabled, and risk-based.

The AI cybersecurity clearinghouse represents a new federal effort to coordinate vulnerability scanning, validation, remediation, and patch distribution. Organizations should prepare by strengthening asset visibility, patch governance, exposure management, and remediation workflows.

This is especially important for organizations with complex environments across endpoints, cloud systems, networks, third-party applications, and operational technology.

What New Responsibilities Do AI Developers Have?

AI developers have new responsibilities to evaluate whether advanced AI models may create cyber risk, especially if those models have frontier-level cyber capabilities.

The AI Executive Order creates a voluntary framework for developers to engage with federal agencies before releasing covered frontier models to trusted partners. AI developers should review model capabilities, cybersecurity controls, intellectual property protections, insider-risk controls, and release governance.

How Can Logically Help?

Logically helps organizations close the gap between IT operations, cybersecurity, AI adoption, and risk management.

As a cyber-first managed services provider, we unify IT and security into one accountable operating model. Our approach gives organizations shared visibility, coordinated response, clearer ownership, and stronger resilience across complex technology environments.

Logically can help in several areas:

• Threat detection and response: Our 24/7 Security Operations Center monitors for indicators of compromise, including threats from transnational criminal organizations and AI-enabled attack vectors.
• AI security assessment: We help organizations evaluate exposure to AI-powered threats and build strategies to use AI securely for defense.
• Critical infrastructure protection: We support organizations in healthcare, financial services, utilities, and other critical sectors with assessment, hardening, and resilience services.
• Compliance readiness: We track emerging regulatory frameworks and help organizations prepare for new cybersecurity and AI expectations.
• Vulnerability management: We help organizations prioritize and remediate vulnerabilities efficiently, aligning with the clearinghouse model described in the AI Executive Order.
• Executive briefings: Our vCISO services help leadership understand policy developments, risk implications, and operational priorities.
• Incident response preparedness: We help organizations build response plans for traditional cyberattacks and AI-powered threats.

What Should Organizations Do Next?

Organizations should assess cyber resilience, AI security, vulnerability management, and incident response readiness now.

The next phase of federal cybersecurity and AI policy will likely increase expectations for visibility, accountability, secure AI adoption, and coordinated response. Organizations that move early will be better positioned to reduce exposure, meet emerging requirements, and defend against evolving threats.

Now is the time to:

• Review your cybersecurity posture.
• Identify gaps between IT operations and security operations.
• Assess AI-related risks across your environment.
• Strengthen vulnerability management and patch workflows.
• Update incident response plans for AI-enabled threats.
• Confirm that critical infrastructure protections align with business risk.
• Engage a trusted cyber-first partner.

Close the Gap with Logically, the Next-Gen MSP.

Contact Logically today to schedule a consultation on how these Executive Orders affect your organization.

By Logically Cybersecurity Expert, Zack Finstad, Vice President of Cybersecurity

Last updated June 2026

FAQs

What do the new cybersecurity and AI Executive Orders mean for organizations?

The new cybersecurity and AI Executive Orders mean organizations should treat cyber resilience, AI security, fraud prevention, and vulnerability management as connected business priorities. Executive Order 14390 focuses on cybercrime and fraud, while the June 2026 AI Executive Order promotes secure AI innovation and AI-enabled defense.

What is Executive Order 14390?

Executive Order 14390 is a March 6, 2026 federal directive focused on combating cybercrime, fraud, scam centers, and predatory schemes against American citizens. The order directs federal agencies to review cybercrime frameworks, create an action plan, improve coordination, support victims, and pressure nations that tolerate predatory cyber activity.

How does the AI Executive Order affect critical infrastructure?

The AI Executive Order affects critical infrastructure by directing federal agencies to facilitate access to cybersecurity tools, services, and covered frontier models where appropriate. The order specifically references rural hospitals, community banks, and local utilities as examples of operators that may need stronger AI-enabled cyber defense.

Why is AI a cybersecurity risk?

AI is a cybersecurity risk because attackers can use AI to scale phishing, automate vulnerability discovery, create deepfakes, impersonate trusted users, and unlawfully access data. Organizations should assess AI-enabled threats while also using AI-assisted monitoring and human-led expertise to improve detection, prioritization, and response.

What is an AI cybersecurity clearinghouse?

An AI cybersecurity clearinghouse is a voluntary federal collaboration with the AI industry and critical infrastructure operators. The clearinghouse is designed to coordinate software vulnerability scanning, validate vulnerabilities, prioritize remediation, and support distribution of vulnerability patches across organizations that need stronger cyber defense.

How can Logically help with cybersecurity and AI readiness?

Logically helps with cybersecurity and AI readiness by unifying IT operations and cybersecurity into one accountable operating model. Logically supports threat detection and response, AI security assessment, critical infrastructure protection, compliance readiness, vulnerability management, executive briefings, and incident response planning for traditional and AI-powered threats.