Modernizing National Security: The Urgent Need to Revamp EO 13549 in 2025

 

Adapting Classified Information Sharing for a New Era of Threats and Technology

In 2010, Executive Order 13549, signed by President Obama and published in the Federal Register on August 23, 2010 (source), established a framework for sharing classified national security information with state, local, tribal, and private sector (SLTPS) entities. Designed to unify policies under the Department of Homeland Security (DHS), it aimed to strengthen post-9/11 collaboration against terrorism and other threats. As of April 10, 2025, however, the landscape of national security has shifted dramatically—from quantum computing breakthroughs to state-sponsored cyberattacks—rendering this framework outdated. This article argues that EO 13549 requires a comprehensive overhaul to align with contemporary technological advancements, evolving threats, and new legal mandates, ensuring SLTPS entities can effectively safeguard classified information. Below, I outline key reasons for this necessity, supported by credible sources, with proper citations to acknowledge the foundational work of others.

Why EO 13549 Needs a Comprehensive Overhaul

• Technological Advancements Outstrip 2010 Protocols
  The digital world of 2010 pales in comparison to 2025’s ecosystem, where cloud computing, IoT devices, and quantum computing dominate. Statista reports over 15 billion IoT devices globally in 2025 (Statista, “IoT Connected Devices Worldwide,” 2025). EO 13549’s directive for DHS to enforce “uniform policies” lacks guidance on modern security measures like post-quantum cryptography or zero-trust architectures, detailed in NIST’s Special Publication 800-207 (National Institute of Standards and Technology, 2020). Without updates, SLTPS entities risk using obsolete encryption, exposing classified data to breaches, as highlighted by CISA’s 2024 quantum threat assessments (Cybersecurity and Infrastructure Security Agency, “Preparing for Post-Quantum Cryptography,” 2024).
• Sophisticated Cyber Threats Require Dynamic Sharing
  Threats have escalated since 2010, with state actors like Russia and China employing AI-driven cyberattacks—evidenced by CISA’s 2024 alerts on grid vulnerabilities (CISA, “2024 Threat Assessment,” 2024). EO 13549 prioritizes procedural consistency over real-time threat intelligence sharing. The 2021 Colonial Pipeline ransomware attack, costing $4.4 million in ransom (U.S. Department of Justice, “Colonial Pipeline Recovery,” June 7, 2021), exposed federal-local coordination gaps. An overhaul could mandate instantaneous data exchange, drawing from CISA’s Automated Indicator Sharing model (CISA, “AIS Overview,” 2025), to counter threats more effectively.
• Misalignment with Contemporary Legal Frameworks
  The 2022 Cyber Incident Reporting for Critical Infrastructure Act (CIRCIA) mandates 72-hour cyber incident reporting to CISA (Public Law 117-103, March 15, 2022), overlapping with EO 13549’s DHS-centric structure. The 2018 Cybersecurity and Infrastructure Security Agency Act further elevated CISA’s role (Public Law 115-278, November 16, 2018), yet EO 13549 remains unchanged since 2010. This misalignment confuses SLTPS entities, as noted in a 2023 GAO report on overlapping federal directives (Government Accountability Office, “Cybersecurity Coordination Gaps,” 2023). An update could harmonize these frameworks, clarifying compliance and leveraging CISA’s authority.
• Globalized Security Demands Broader Coordination
  National security in 2025 is global, with attacks like SolarWinds (FireEye, “SolarWinds Supply Chain Attack,” December 13, 2020) showing international vulnerabilities. EO 13549’s domestic focus omits protocols for collaboration with allies, such as the EU’s NIS2 Directive, effective 2024 (European Union, “Directive 2022/2555,” October 27, 2022). Updating the order to align with global standards would bolster SLTPS defenses against cross-border threats, a gap unaddressed in its original text.
• Workforce and Training Gaps Hinder Implementation
  EO 13549 relies on DHS for uniform training, but a 2023 DHS report cites persistent cybersecurity skill shortages among local governments (DHS, “State and Local Cybersecurity Grant Program Report,” 2023). Phishing attacks, up 30% since 2022 per Verizon’s Data Breach Investigations Report (Verizon, “2024 DBIR,” 2024), exploit these gaps. An updated order could mandate tailored training, integrating CISA resources and NIST’s Cybersecurity Framework (NIST, “Cybersecurity Framework 2.0,” 2024), to ensure SLTPS personnel can protect classified data.

The Case for Action in 2025

EO 13549 bridged federal-SLTPS collaboration in 2010, but its rigidity is now a vulnerability. Cybersecurity Ventures forecasts $10.5 trillion in global cybercrime losses for 2025 (Cybersecurity Ventures, “2025 Cybercrime Report,” 2025), and national security demands agility against threats unimaginable in 2010. SLTPS entities need modernized rules to handle classified data amid quantum risks and AI attacks. Recent federal actions, like Trump’s January 2025 EO rescissions, show willingness to adapt (White House, “Executive Actions,” January 20, 2025). An overhauled EO 13549 could unify CISA’s leadership, NIST’s standards, and breach lessons, creating a 2025-ready strategy. Ohio AG Dave Yost’s 2025 crypto scam recoveries (Ohio Attorney General, “Crypto Fraud Recovery,” April 10, 2025) exemplify state-level vigilance—imagine that amplified federally. Inaction isn’t an option; our nation’s security depends on it.

Sources

• CISA. “2024 Threat Assessment.” 2024.
• CISA. “Automated Indicator Sharing Overview.” 2025.
• CISA. “Preparing for Post-Quantum Cryptography.” 2024.
• Cybersecurity Ventures. “2025 Cybercrime Report.” 2025.
• DHS. “State and Local Cybersecurity Grant Program Report.” 2023.
• European Union. “Directive 2022/2555 (NIS2).” October 27, 2022.
• FireEye. “SolarWinds Supply Chain Attack.” December 13, 2020.
• Government Accountability Office. “Cybersecurity Coordination Gaps.” 2023.
• National Institute of Standards and Technology. “SP 800-207: Zero Trust Architecture.” 2020.
• NIST. “Cybersecurity Framework 2.0.” 2024.
• Ohio Attorney General. “Crypto Fraud Recovery.” April 10, 2025. ohioattorneygeneral.gov.
• Public Law 115-278. “Cybersecurity and Infrastructure Security Agency Act.” November 16, 2018.
• Public Law 117-103. “Cyber Incident Reporting for Critical Infrastructure Act.” March 15, 2022.
• Statista. “IoT Connected Devices Worldwide.” 2025.
• U.S. Department of Justice. “Colonial Pipeline Recovery.” June 7, 2021.
• Verizon. “2024 Data Breach Investigations Report.” 2024.
• White House. “Executive Actions.” January 20, 2025.

Crypto Chaos in Cincinnati: A Victim’s Tale and Dave Yost’s Fight for Ohio

 

How a Local Woman Lost Thousands and Why Dave Yost Could Be the Governor Ohio Needs.

In the quiet suburbs of Cincinnati, a chilling reminder of the digital age’s dark side unfolded this spring. A local woman fell prey to a cunning cryptocurrency scam, losing over $35,000 to faceless thieves lurking behind computer screens. But this story isn’t just about one person’s misfortune—it’s a testament to the relentless efforts of Ohio Attorney General Dave Yost, a man who’s spent decades safeguarding Ohioans from such predators and is now vying to lead the state as its next governor. As the Buckeye State gears up for the 2026 gubernatorial race, Yost’s track record and vision make a compelling case for why he could be the leader Ohioans deserve.

The Cincinnati Crypto Scam: A Modern Heist

The ordeal began innocently enough. On an ordinary day in early 2025, the Cincinnati-area woman—whose identity remains protected—received a pop-up alert on her computer, warning of a security breach. Panicked, she followed instructions from a supposed “tech support” agent who convinced her that her savings were at risk. The solution? Convert her money into cryptocurrency and deposit it into a Bitcoin ATM for “safekeeping.” By the time she realized the ruse, $35,000 was gone—siphoned away by scammers exploiting her trust.

But this wasn’t the end of her story. Enter Ohio’s Bureau of Criminal Investigation (BCI), a specialized unit under Attorney General Dave Yost’s office. On April 10, 2025, Yost and Delhi Township Police Chief Jeff Braun announced a breakthrough: the BCI’s Electronic Fraud Investigations team had tracked down and recovered the full $35,000, returning it to the victim. According to the official release from Yost’s office (ohioattorneygeneral.gov), this victory marked another win for a unit launched in summer 2024 to combat the rising tide of crypto-related crimes—a scourge that’s hit Ohio hard, with losses in the millions annually.

The scam itself followed a familiar playbook: a fake alert, a high-pressure pitch, and a demand for crypto payment. It’s a tactic Yost has seen too often, warning Ohioans, “Criminals are hitting cryptocurrency scams hard, which can have a lasting impact on your bank account and your credit history.” This Cincinnati case underscores the stakes—and Yost’s commitment to turning victims into victors.

Dave Yost: A Lifetime of Public Service

Dave Yost isn’t a newcomer to Ohio’s public stage. Born in 1956, this Columbus native has dedicated over 30 years to serving the state, blending a journalist’s curiosity—honed at Ohio State University—with a lawyer’s precision from Capital University Law School. His career kicked off in the 1980s as a reporter for the Columbus Citizen-Journal, but he soon pivoted to public service, working under Columbus Mayor Buck Rinehart and Governor George Voinovich.

Yost’s political journey began in earnest in 1999 when he was appointed Delaware County Auditor, a role he leveraged to root out inefficiencies. By 2003, he’d stepped up to Delaware County Prosecutor, sharpening his focus on justice. His statewide ascent came in 2010 as Ohio’s 32nd State Auditor, a position he held until 2019, when he became the 51st Attorney General. Now, in 2025, Yost has set his sights on the governorship, announcing his candidacy on January 23 to succeed term-limited Mike DeWine.

Accomplishments That Speak Volumes

Yost’s resume is a laundry list of wins for Ohioans. As Auditor, he uncovered $260 million in government inefficiencies—proving he was “DOGE before DOGE was cool,” as he quipped in a 2025 interview with News 5 Cleveland. Since taking the AG’s office in 2019, he’s racked up 170 criminal convictions for public corruption, including the high-profile House Bill 6 scandal, where he brought down FirstEnergy execs and saved taxpayers over $1 billion. His antitrust suit against Google, challenges to Biden’s border policies, and Supreme Court victory against a COVID vaccine mandate showcase his tenacity.

But it’s his protection of everyday Ohioans that stands out. In 2023, he shut down eight sham charities, fining their operators $190,000 for scamming donors (WLWT). In October 2024, his fraud unit clawed back $130,000 for a 75-year-old Worthington woman duped in a crypto scam—foreshadowing the Cincinnati recovery. And after the 2023 East Palestine train derailment, Yost’s 58-count lawsuit against Norfolk Southern demanded accountability for “glaring negligence.” Time and again, he’s been the shield between Ohioans and those who’d exploit them.

Why Yost Would Be a Great Governor

Ohioans, imagine a governor who’s walked every county, who knows your struggles—from kids graduating illiterate to a population graying faster than it’s growing. Yost’s not just a suit in Columbus; he’s a fighter who’s proven he can tackle big challenges. His goal-based approach to policy, as he told Ohio Capital Journal in February 2025, promises to shift from reacting to problems to setting a bold vision: better schools, safer streets, and a government that works for you.

Yost’s three decades in public service mean he’s no stranger to Ohio’s heartbeat. He’s battled criminals—digital and otherwise—while championing constitutional rights, like defending the Second Amendment and enforcing (then respecting) Ohio’s abortion laws post-2023 voter amendment. His independent streak—calling out fellow Republicans when needed—shows he’s not beholden to party lines but to Ohio’s people. And with Trump’s 2022 endorsement in his pocket, he’s got the clout to unify a red-leaning state without losing sight of the center.

A Call to Ohioans

The Cincinnati woman’s story could’ve ended in despair, but Dave Yost turned it around. That’s the kind of leadership Ohio needs in its next governor—someone who doesn’t just talk about protection but delivers it, from crypto scams to corporate corruption. With a proven record spanning over 30 years, Yost’s not just running for office; he’s running for you. As he said, “I believe it’s my duty to walk this path.” Come 2026, Ohioans have a chance to put a protector-in-chief in the governor’s mansion. Let’s make it happen.

More information: Cryptocurrency scams - Education and Prevention