THU 02 JUL 2026 · GMT EDITION A WHITESTONE INTELLIGENCE PUBLICATION
MARKETS · CYBER · MEMOS · MODELS
DAILY ISSUES26 MAY27 MAY28 MAY29 MAY30 MAY31 MAY01 JUN02 JUN03 JUN04 JUN05 JUN06 JUN07 JUN08 JUN09 JUN10 JUN11 JUN12 JUN13 JUN14 JUN15 JUN16 JUN17 JUN18 JUN19 JUN21 JUN22 JUN23 JUN24 JUN25 JUN26 JUN27 JUN28 JUN29 JUN30 JUN01 JUN02 JUNALL ›
FRONT PAGE / CYBER / CYB-30D-015
CYBER · cves zero days · 2026-06-02SCOOP 70

Trump Signs AI Executive Order Creating Treasury-Run 'AI Cybersecurity Clearinghouse' and 30-Day Frontier-Model Reviews

On June 2, 2026, President Trump signed an executive order titled 'Promoting Advanced Artificial Intelligence Innovation and Security,' directing national-security and civilian agencies to increase scrutiny of frontier A.

·FILED ISSUE 2026-06-02·1 MIN READ·RE-VERIFIED 2026-07-02 UTC·✓ RE-VERIFIED 2026-07-02

VERDICT — CONFIRMED

QA-reviewed confidence · primary + corroborating sources verified · re-verified 2026-07-02 UTC
Trump Signs AI Executive Order Creating Treasury-Run 'AI Cybersecurity Clearinghouse' and
Generated illustration · not a photograph

On June 2, 2026, President Trump signed an executive order titled 'Promoting Advanced Artificial Intelligence Innovation and Security,' directing national-security and civilian agencies to increase scrutiny of frontier AI models and to bolster federal cyber defenses against AI-enabled threats. A central provision tasks the Treasury Department—working with the NSA, CISA and other agencies and required to stand up within roughly one month—to establish an 'AI cybersecurity clearinghouse,' a voluntary collaboration with industry and critical-infrastructure operators to scan, discover and validate software vulnerabilities and coordinate patch distribution.

Within 30 days, CISA and White House officials must issue Binding Operational Directives to expedite cyber defense of civilian federal systems and expand AI-enabled defensive tools extended to state, local and critical-infrastructure operators. The order creates a voluntary framework under which developers may submit 'covered frontier models' for federal testing up to 30 days before public release—reduced from a 90-day window in an earlier draft the president pulled back on May 21 over competitiveness concerns—applying, per adviser David Sacks, only to models representing a 'meaningful step-change in cyber capabilities.' A classified benchmarking process to assess models' cyber capabilities is due by August 1, 2026, and the Attorney General is directed to prioritize prosecutions under the Computer Fraud and Abuse Act and fraud statutes for AI-enabled intrusions.

Reactions split: the Business Software Alliance praised the 'voluntary and phased approach,' while Finite State's Doc McConnell warned classified benchmarking could delay getting capable models 'into the hands of cyber defenders who can put them to use today.'

Share
Filed by the Cyber desk · verified by the verification desk · re-verified 2026-07-02 · Our standards: the two-source rule ›
CITE THIS FILE — The Dossier Wire · cyb-30d-015 · filed 2026-06-02 · https://thedwire.com/wire/cyb-30d-015-trump-signs-ai-executive-order-creating-treasury-run-ai.html · Primary and corroborating sources listed above; archived at publication. Republishing & licensing: hello@thedwire.com.
More from Cyber FULL DESK ›
Cyber desk illustration
Generated desk illustration · not a photograph
CYBER · SCOOP 60

May 2026 Ransomware: 646 Leak-Site Victims Across 61 Groups; Qilin Leads for Fifth Straight Month

Breachsense tracked 646 organizations listed on ransomware leak sites in May 2026, posted by 61 distinct groups across 73 countries and 59 industries. Qilin topped the rankings with 101 claimed victims, holding the number-one spot for the fifth consecutive month, followed by TheGentlemen (70), Akira (52), DragonForce (41) and INC_RANSOM (

✓ verified
READ THE FILE ›
Pro-Iranian hackers tricked Meta's AI support bot into handing over high-pr
Krebs on Security
CYBER · SCOOP 80

Pro-Iranian hackers tricked Meta's AI support bot into handing over high-profile Instagram accounts

Pro-Iranian hackers spent the last weekend of May seizing high-profile Instagram accounts by tricking Meta's AI support assistant into resetting their passwords, Brian Krebs reported. On May 31, word spread across several Telegram channels that Meta's AI bot would happily add a new email address to an existing account as part of its stand

✓ verifiednewSOURCE ↗
READ THE FILE ›
PAN-OS GlobalProtect auth bypass under active exploitation as CISA adds CVE-2026
The Hacker News
CYBER · SCOOP 63

PAN-OS GlobalProtect auth bypass under active exploitation as CISA adds CVE-2026-0257 to KEV

Exploitation of CVE-2026-0257, an authentication bypass in Palo Alto Networks' PAN-OS GlobalProtect VPN, moved to the top of defenders' weekend queue on May 30 after CISA added the flaw to its Known Exploited Vulnerabilities catalog late Friday and Rapid7 detailed in-the-wild attacks. The bug, first disclosed by Palo Alto Networks on May

✓ verifiednewSOURCE ↗
READ THE FILE ›

The morning wire in your inbox — every brief, primary sources linked, no noise.

Free tier. The Wire — continuous desk briefs · Records archive · Bureau alerts.

Stored to the wire's subscriber list. No spam, unsubscribe any time.