TL;DR
- President Trump signed a new Executive Order targeting transnational cybercrime organizations
- American consumers lost $12.5 billion to cyber-enabled fraud in 2024
- The order creates a dedicated operational cell and proposes a Victims Restoration Program
- Small businesses should expect stronger coordination but also new resources for cyber resilience
- lilMONSTER can help you prepare for these changes and strengthen your security posture
The Executive Order: A New Era in Cybercrime Enforcement
On March 6, 2026, President Donald J. Trump signed a comprehensive Executive Order to combat cybercrime, fraud, and predatory schemes targeting American families, businesses, and critical infrastructure [1]. This marks a significant shift in how the federal government approaches transnational criminal organizations (TCOs) engaged in cyber-enabled crime.
Free Resource
Get Our Weekly Cybersecurity Digest
Every Thursday: the threats that matter, what they mean for your business, and exactly what to do. Trusted by SMB owners across Australia.
No spam. No tracking. Unsubscribe anytime. Privacy
Get the Free Cybersecurity Checklist
A practical, no-jargon security checklist for Australian businesses. Download free — no spam, unsubscribe anytime.
Send Me the Checklist →The order directs relevant Administration officials to conduct a comprehensive review of operational, technical, diplomatic, and regulatory tools to combat TCOs engaged in cybercrime and predatory schemes [1]. It requires submission of an action plan identifying responsible organizations and proposing solutions to prevent, disrupt, investigate, and dismantle their operations.
Why This Matters for Small Businesses
The Staggering Cost of Cybercrime
In 2024 alone, American consumers reported losing more than $12.5 billion to cyber-enabled fraud, with seniors on average losing the most [1]. While this figure focuses on consumers, small businesses face similar threats through business email compromise (BEC), ransomware, and invoice fraud.
According to the FBI's Internet Crime Report, BEC and funds transfer fraud combined for 58% of all cyber insurance claims filed in 2025 [2]. The average cost of a ransomware attack for small businesses reached $313,000 in 2025, including downtime, recovery costs, and lost revenue [3].
The Scale of the Threat
The Executive Order highlights that 73% of U.S. adults have experienced some kind of online scam or attack, and 87% of seniors view online scams and attacks as a major problem [1]. For small businesses, the statistics are equally alarming:
- 61% of small businesses experienced at least one cyberattack in 2025 [4]
- The average small business holds sensitive data on 1,500+ customers [5]
- 60% of small businesses close within six months of a cyberattack [6]
Key Provisions That Affect Small Businesses
1. National Coordination Center (NCC) Leadership
The order designates the NCC as the lead national element for coordinating efforts against cybercrime TCOs [1]. This centralized approach should provide:
- Better intelligence sharing between federal agencies and private sector partners
- Streamlined reporting for businesses that fall victim to cybercrime
- Coordinated response to large-scale campaigns targeting multiple businesses
2. Victims Restoration Program
Perhaps most significant for small businesses is the directive to the Attorney General to submit a recommendation regarding the establishment of a Victims Restoration Program [1]. This program would:
- Return seized or forfeited funds from fraudsters directly to victims
- Provide a mechanism for recovering losses from BEC and invoice fraud
- Offer financial relief beyond traditional insurance coverage
3. State and Local Training and Resilience Building
The order directs the Secretary of Homeland Security to partner with the NCC to provide training, technical assistance, and resilience building against cyber threats for State and local partners [1]. This should translate to:
- Free or low-cost cybersecurity training for small business owners
- Technical assistance programs through local Small Business Development Centers
- Improved coordination with local law enforcement on cybercrime investigations
4. International Pressure and Consequences
The order directs the Secretary of State to engage with foreign governments and impose consequences—including sanctions, visa restrictions, foreign assistance limits, and expulsion of complicit officials—on nations that tolerate predatory schemes [1].
For small businesses, this means:
- Reduced safe havens for cybercriminals who target U.S. businesses
- Increased pressure on countries that don't cooperate with cybercrime investigations
- Potential disruption of scam call centers and fraud operations overseas
What Small Businesses Should Do Now
1. Review Your Incident Response Plan
With increased federal coordination comes the expectation that businesses can respond quickly to incidents. Ensure your incident response plan includes:
- Federal reporting contacts (FBI IC3, Secret Service, CISA)
- Insurance notification procedures
- Legal and PR response templates
- Business continuity and recovery steps
2. Strengthen Identity Security
The Executive Order emphasizes that ransomware attacks, phishing campaigns, financial fraud, sextortion schemes, and impersonation scams are coordinated campaigns run by sophisticated TCOs [1]. Identity security is your first line of defense:
- Enable phishing-resistant MFA on all business accounts
- Implement conditional access policies that restrict login attempts from unusual locations
- Regularly review user access and revoke privileges for former employees immediately
- Train employees on how to spot AI-generated phishing attempts
3. Document Everything for Potential Victim Restoration
If the Victims Restoration Program is established, detailed documentation will be critical for recovering funds:
- Keep timestamps of all fraudulent communications
- Preserve email headers and transaction records
- Document financial losses with supporting evidence
- Report incidents promptly to federal authorities (IC3, local FBI field office)
4. Leverage New Training Resources
As the Department of Homeland Security partners with the NCC to provide training [1], small businesses should:
- Monitor CISA's cybersecurity resources for free training opportunities
- Participate in local chamber of commerce cybersecurity events
- Join industry-specific ISACs (Information Sharing and Analysis Centers) for threat intelligence
ISO 27001 SMB Starter Pack — $97
Everything you need to start your ISO 27001 journey: gap assessment templates, policy frameworks, and implementation roadmap built for Australian SMBs.
Get the Starter Pack →The Bigger Picture: A Coordinated National Response
This Executive Order is part of a broader administration strategy. In June 2025, President Trump signed an Executive Order to strengthen the nation's cybersecurity by focusing on critical protections against foreign cyber threats and enhancing secure technology practices [1].
In May 2025, the TAKE IT DOWN Act was signed into law, focusing on protecting children and families from online extortion and exploitation through non-consensual distribution of intimate images and deepfake abuse [1]. While focused on individual protection, it demonstrates a willingness to use executive and legislative power to address emerging cyber threats.
What This Doesn't Fix (And What You Still Need to Do)
While the Executive Order is a significant step forward, it doesn't replace the need for proactive cybersecurity. The order focuses on disruption, investigation, and enforcement—not prevention.
Small businesses still need to:
- Maintain backups with immutable copies stored offline or in cloud with strict access controls
- Patch systems regularly, prioritizing internet-facing infrastructure
- Conduct security awareness training for all employees, not just IT staff
- Implement defense-in-depth with overlapping security controls
- Work with a trusted cybersecurity partner who understands small business constraints
Timeline: What to Expect and When
The Executive Order sets several processes in motion:
Immediate (Days to Weeks):
- Comprehensive review of existing tools and authorities begins
- Interagency coordination meetings commence
- Identification of priority TCOs and scam centers
Short-Term (1-3 Months):
- Action Plan submitted identifying responsible organizations and solutions
- Recommendations for Victims Restoration Program delivered
- NCC operational cell established
Medium-Term (3-6 Months):
- Training programs for state and local partners launched
- International engagements with foreign governments begin
- First wave of sanctions or other consequences announced
Long-Term (6-12 Months):
- Victims Restoration Program potentially operational
- Disruption of major TCO operations expected
- Measurable reduction in cybercrime campaigns against U.S. targets
How lilMONSTER Can Help
Navigating this changing landscape while running a business is challenging. lilMONSTER provides:
- Incident response planning tailored to small business realities
- Security awareness training for your team on emerging threats
- Vulnerability assessments to identify weaknesses before attackers do
- Compliance guidance as new regulations and programs emerge
- Fractional CISO services to give you enterprise-level security expertise at small business costs
FAQ
No. The order focuses on disrupting criminal organizations and improving coordination, not on technical prevention. You still need robust security controls, employee training, and incident response planning. Think of it as law enforcement working upstream to reduce the threat, while you secure your business downstream.
The program is proposed but not yet implemented. The Attorney General must submit recommendations on its establishment. If created, it would return seized or forfeited funds from fraudsters directly to victims. Monitor the Department of Justice website for updates, and ensure you document all cybercrime losses thoroughly.
Cyber insurers may view the increased federal coordination positively, potentially reducing risk profiles over time. However, insurers still expect you to maintain baseline security controls (MFA, backups, patching). The Victims Restoration Program could complement insurance by providing additional recovery avenues for certain fraud types.
Report through existing channels (FBI IC3, local law enforcement) but be prepared for potentially faster follow-up and interagency coordination as the NCC operational cell is established. Document everything thoroughly, especially if the Victims Restoration Program is implemented.
Focus on what you can control: strengthen identity security with phishing-resistant MFA, implement and test backup systems, train employees to spot AI-generated phishing, develop an incident response plan with federal reporting contacts, and work with a cybersecurity partner to assess your current posture.
References
[1] The White House, "Fact Sheet: President Donald J. Trump Combats Cybercrime, Fraud, and Predatory Schemes Against American Citizens," The White House, March 6, 2026. [Online]. Available: https://www.whitehouse.gov/fact-sheets/2026/03/fact-sheet-president-donald-j-trump-combats-cybercrime-fraud-and-predatory-schemes-against-american-citizens/
[2] Coalition, "Cyber Claims Report 2025," Coalition, 2025. [Online]. Available: https://www.coalitioninc.com/reports/cyber-claims-report
[3] Sophos, "The State of Ransomware 2025," Sophos, 2025. [Online]. Available: https://www.sophos.com/en-us/knowledge-center/ransomware
[4] Verizon, "2025 Data Breach Investigations Report," Verizon, 2025. [Online]. Available: https://www.verizon.com/business/resources/reports/dbir/
[5] National Cybersecurity Alliance, "Small Business, Big Threat: 2025 Study," NCSA, 2025. [Online]. Available: https://staysafeonline.org/small-business-big-threat
[6] National Cyber Security Alliance, "The Impact of Cyberattacks on Small Businesses," NCSA, 2025. [Online]. Available: https://staysafeonline.org/small-business-impact
[7] CISA, "Ransomware Guide," CISA, 2025. [Online]. Available: https://www.cisa.gov/stopransomware
[8] FBI IC3, "2024 Internet Crime Report," FBI, 2024. [Online]. Available: https://www.ic3.gov/Media/PDF/AnnualReport/2024_IC3Report.pdf
[9] Department of Justice, "Victims of Crime Act," DOJ, 2025. [Online]. Available: https://www.justice.gov/ovw/victims-crime-act
[10] NIST, "Cybersecurity Framework 2.0," NIST, 2024. [Online]. Available: https://www.nist.gov/cyberframework
This Executive Order marks a significant shift in how the U.S. government approaches cybercrime, but federal action alone won't protect your business. Work with lilMONSTER to build a security posture that keeps you safe no matter what threats emerge. Get started with a consultation
Work With Us
Ready to strengthen your security posture?
lilMONSTER assesses your risks, builds the tools, and stays with you after the engagement ends. No clipboard-and-leave consulting.
Book a Free Consultation →TL;DR
- The President made a new plan to catch cybercriminals who hurt families and businesses
- Last year, people lost $12.5 billion to online scams—that's like 500,000 new cars!
- The government will now work together to catch bad guys and help get money back
- You still need to lock your digital doors with passwords and safety tools
What Is an Executive Order?
Think of an Executive Order like when your parents make a new rule for the whole family. But instead of a house, it's for the entire country. The President signed a special paper that tells all the police and helpers to work together to stop online bad guys [1].
It's like when your teacher makes a plan for the whole class to work together on a big project. Everyone has a job to do.
Why Did the President Do This?
Imagine if someone kept breaking into houses in your neighborhood, but nobody worked together to catch them. That's what was happening with online crime.
Last year, people in America lost $12.5 billion—that's billions with a B! [1]. That's enough money to buy 500,000 new cars. Or build 250 new elementary schools. Or buy everyone in a big city a brand new bicycle.
The bad guys were:
- Tricking people into sending money
- Locking up business computers and demanding payment
- Pretending to be someone they're not
- Scaring grandmas and grandpas
And they were doing it from other countries where American police couldn't catch them.
What's New That Helps Your Family
A Special Team to Catch Bad Guys
The President created a special team called the National Coordination Center (NCC) [1]. Think of them like the Avengers, but for catching online criminals. Instead of Iron Man and Captain America, it's FBI agents, police, and computer experts all working together.
Getting Your Money Back
Here's something really cool: the President wants to make a program called the Victims Restoration Program [1]. If you get tricked into sending money to a bad guy, and the police catch them and get the money back, this program would give it back to you.
It's like when you lose your lunch money, someone finds it, and they make sure it gets returned to you.
Teaching Police How to Help
The plan also helps police everywhere learn how to stop online bad guys [1]. It's like giving everyone in your class the same textbook and training so everyone knows how to solve the problems.
Telling Other Countries to Stop Bad Guys
Some countries let bad guys live there and do crimes from their computers. The President's plan says "Hey, you need to stop these people or we won't be friends anymore" [1]. It's like telling your neighbor they need to stop their dog from digging in your yard.
This Doesn't Mean You Can Stop Being Careful
Even with this new plan, you still need to be safe online. Think about it like this: The police are working hard to stop burglars, but you still lock your front door, right?
Keep Your Digital Doors Locked
- Use strong passwords that are hard to guess—like a sentence instead of just one word
- Use two-factor authentication (that's when you need both a password and a code from your phone)
- Don't click on weird links in emails, even if they look real
- Tell an adult right away if something seems wrong or scary online
Tell Your Parents About This Stuff
If your family has a business, talk to your parents about:
- Making sure the business has good security on its computers
- Backing up important files (making extra copies in a safe place)
- Being careful with emails that ask for money or passwords
- Knowing who to call if something bad happens
What Happens Next?
Right Now (The Next Few Weeks)
The government starts making plans. They figure out who needs to do what job, like a coach assigning positions to a sports team.
Soon (In a Few Months)
The special teams start working together. They begin catching bad guys and stopping scams. The training programs for police start up.
Later (In 6 to 12 Months)
The program to help people get their money back might start working. More bad guys get caught. There should be fewer scams because the police are working better together.
What You Can Do Today
For Your Family
- Talk about being safe online together
- Make a plan for what to do if someone tries to trick you
- Keep passwords and codes secret—don't even share with best friends
- If someone scary contacts you online, tell a grownup immediately
For Your Family Business
- Ask your parents if the business has good computer security
- Suggest they work with a security company like lilMONSTER to check if everything is safe
- Make sure important files are backed up in case something goes wrong
- Know how to report problems to the police and FBI
A Story About Why This Matters
Imagine you have a lemonade stand. You work hard making lemonade, setting up your table, and being nice to customers. Then one day, someone comes along, says they're collecting money for you, takes all your cash, and disappears.
That's what cybercriminals do to businesses every day. They pretend to be someone else, trick people into sending money, and steal what families worked hard to build.
The President's new plan is like having a neighborhood watch for the whole internet. People looking out for each other, working together, and making it harder for bad guys to get away with stealing.
The Big Lesson
The government is working hard to catch cybercriminals, but you still need to do your part. It's like wearing a seatbelt even though there are traffic laws and police to keep roads safe.
Bad guys exist online. They want to trick you and take your money. But now there are more people working to stop them than ever before.
Be smart. Be careful. And ask for help when you need it.
That's how you keep your family and your family business safe.
FAQ
No, just like how police can't catch every burglar in the real world. But they'll catch more than before, and work together better. You still need to be careful and protect yourself.
Tell a grownup right away. They should call the police and report it to the FBI at their website called IC3. The new program might help get money back if they catch the bad guy.
Some bad guys live in other countries where American police can't go. That's why the President is talking to other countries and telling them to stop letting bad guys hide there.
You don't need to worry, but you do need to be careful. It's like looking both ways before crossing the street. You don't have to be scared, but you do have to pay attention and follow the safety rules.
That's okay! You can help them by reminding them about safety rules, and your family can work with a company like lilMONSTER that knows how to keep businesses safe online.
References
[1] The White House, "Fact Sheet: President Donald J. Trump Combats Cybercrime, Fraud, and Predatory Schemes Against American Citizens," The White House, March 6, 2026. [Online]. Available: https://www.whitehouse.gov/fact-sheets/2026/03/fact-sheet-president-donald-j-trump-combats-cybercrime-fraud-and-predatory-schemes-against-american-citizens/
[2] National Crime Prevention Council, "Cybercrime Prevention Tips," NCPC, 2025. [Online]. Available: https://www.ncpc.org/resources/cybercrime-prevention
[3] Stop.Think.Connect, "Online Safety Tips for Families," DHS, 2025. [Online]. Available: https://www.stopthinkconnect.org
[4] National Cybersecurity Alliance, "Safe Online Surfing for Kids," NCSA, 2025. [Online]. Available: https://staysafeonline.org/kids
[5] FBI Safe Online Surfing, "Internet Safety," FBI, 2025. [Online]. Available: https://www.fbi.gov/sos
[6] Netsmartz, "Internet Safety for Kids," NCMEC, 2025. [Online]. Available: https://www.missingkids.org/netsmartz/home
[7] Common Sense Media, "Digital Citizenship and Safety," CSM, 2025. [Online]. Available: https://www.commonsensemedia.org/educators/digital-citizenship
[8] Cyber Safe Kids, "Online Safety Resources," CSK, 2025. [Online]. Available: https://www.cybersafekids.com
Keeping your family business safe online is a team effort. The government is doing their part, but you need to do yours too. Work with lilMONSTER to make sure your digital doors are locked tight. Talk to us about keeping your business safe
