President Trump delays signing of AI executive order.

By the N2K CyberWire staff

President Trump delays signing of AI executive order.

Axios reports that President Trump has delayed the signing of an executive order on AI and cybersecurity after speaking with his AI adviser David Sacks and several tech executives, including Mark Zuckerberg and Elon Musk. Trump told reporters yesterday, "I think it gets in the way of — you know, we're leading China, we're leading everybody, and I didn't want to do anything to get in the way of that lead."

Sources familiar with the situation told Axios that the executive order was "unnecessary" and "just something doomers wanted," adding that the main reason it was delayed was that President Trump "just hates regulation." The order was supported by those who have been calling for stricter regulation of AI model development, while critics maintain that regulation will hamper a rapidly evolving industry.

Iran’s evolving cyber playbook.

Iran’s cyber operations have evolved beyond destructive malware, with actors pivoting to target identity systems. Dave Bittner sat down with Sam Rubin, Senior Vice President at Palo Alto Networks, to discuss how Iranian groups are weaponizing stolen credentials and trusted access to reach high-value targets. Whether it be attacking vulnerable trusted parties or crafting documents loaded with malware, listen to the conversation to learn how Iran’s pivot is impacting the cybersecurity landscape.

CISA warns of actively exploited Trend Micro and Langflow vulnerabilities.

The US Cybersecurity and Infrastructure Security Agency (CISA) has added two vulnerabilities to its Known Exploited Vulnerabilties catalog, Security Affairs reports. The first is a critical origin validation error vulnerability (CVE-2025-34291) affecting the open-source AI builder Langflow, which can lead to remote code execution. The second is a medium-severity directory traversal flaw (CVE-2026-34926) in Trend Micro's Apex One (on-premise) server, which "could allow a pre-authenticated local attacker to modify a key table on the server to inject malicious code to deploy to agents on affected installations."

Infosecurity Europe 2026

Infosecurity Europe is the leading gathering for the cybersecurity industry in Europe. Each year, we bring the community together to share the latest innovations, learn from one another, and test and benchmark solutions. Join us in London!

Two Americans admit to participation in tech support scam operations.

Two American men have pleaded guilty to participating in an India-based tech support scam operation, the Record reports. Adam Young and Harrison Gevirtz served as CEO and CSO, respectively, of a US-based telecommunications services company called "C.A. Cloud Attribution" that provided various phone services to fraudsters in India. The US Justice Department said the two men were aware that their customers were conducting scams and failed to report the activity to law enforcement.

The DOJ stated, "[T]he defendants received numerous complaints and inquiries from telephone providers and law enforcement concerning customers engaged in tech-support fraud. Despite that knowledge, they advised some of their customers about techniques the customers could use to avoid complaints by fraud victims and prevent account termination. Young and Gevirtz assisted some of those customers to buy and sell fraud calls amongst themselves."

Daily Briefing for 05.22.26

Top stories.

President Trump delays signing of AI executive order.

CISA warns of actively exploited Trend Micro and Langflow vulnerabilities.

Two Americans admit to participation in tech support scam operations.

Attacks, Threats, and Vulnerabilities

Legislation, Policy, and Regulation

Litigation, Investigation, and Law Enforcement