December 22, 2025

America’s Cyber Retreat Is Undermining Indo-Pacific Security

This article was originally published in Just Security.

On Dec. 3, the White House backed away from sanctioning China’s spy agency, the Ministry of State Security (MSS), that carried out one of the most extensive hacking campaigns in U.S. history against critical infrastructure. The administration reportedly halted these sanctions to preserve a trade truce that U.S. President Donald Trump and Chinese General Secretary Xi Jinping struck at the Busan summit in October.

This sends the wrong message to Beijing, as well as to U.S. allies in the Indo-Pacific caught in China’s cyber crosshairs. Trump’s new National Security Strategy (NSS) explicitly calls for burden-sharing, arguing that allies must “assume primary responsibility for their regions,” while the United States serves as a “convener and supporter” in regional defense. Backing away from sanctions after a major China-linked hacking campaign undercuts that logic: burden-sharing collapses if the United States is not willing to bear economic or political costs itself. If the world’s largest economy will not confront China’s cyber operations, how can it credibly ask Indo-Pacific allies — who have far less leverage over Beijing — to step up?

Without a new framework to counter China-backed cyber operations in the region, Beijing and other state-backed cyber groups will continue escalating their cyber operations to spy, steal, and sabotage with near impunity.

There is still time to recalibrate. To counter Beijing’s cyberattacks and operationalize burden-sharing, the United States must use its unique leverage to impose costs on China while enabling Indo-Pacific allies to lead cyber defense in the region.

The U.S. intelligence community identifies China as the most persistent and active cyber threat to U.S. networks. In 2024, the Chinese state-sponsored hacking group Salt Typhoon carried out one of the most severe breaches of U.S. telecommunications companies. Just weeks before Trump met with Xi in October, the United States uncovered another major China state-backed cyber intrusion of the cybersecurity vendor F5, triggering an emergency directive from the lead U.S cyber agency. Yet, the cyber threat to Washington extends far beyond the homeland. China’s cyber operations have already infiltrated networks supporting U.S. forward deployed forces across the Indo-Pacific, targeted export controls on critical technologies, and spread disinformation campaigns designed to erode trust in U.S. alliances.

Read the full article on Just Security.

Video

Technology & National Security
Selling H200s to China Erodes Main U.S. Advantage
A new report says China could buy twice as much AI computing power as it can produce domestically if Nvidia H200 chips are allowed there. Janet Egan from the Center for a New ...

By Janet Egan
- January 22, 2026
Commentary

Technology & National Security
CNAS Insights | Unpacking the H200 Export Policy
AI Chips for China With two new policies, President Donald Trump has implemented his pledge to allow sales of NVIDIA’s H200 AI chips to China in exchange for a quarter of the ...

By Janet Egan & James Sanders
- January 16, 2026
Commentary

Indo-Pacific Security
America Must Salvage Its Relationship With India
The longer the current crisis lasts, the harder it will be to restore the relationship and the more likely it is that the two countries will lose an entire generation of progr...

By Richard Fontaine & Lisa Curtis
- Foreign Affairs
- January 16, 2026
Podcast

Indo-Pacific Security / Technology & National Security
AI and Policy, Both Foreign and Domestic
In an episode recorded just before Christmas, Darren interviews Janet Egan, Senior Fellow and Deputy Director of the Technology and National Security Program at CNAS, about AI...

By Janet Egan
- January 15, 2026