Listen to this Post
A New Chapter for the FBI’s Cyber Mission
In a decisive move that highlights the increasing importance of cybercrime enforcement, the FBI has appointed seasoned investigator Brett Leatherman as the new assistant director of its Cyber Division. With over two decades of experience in federal law enforcement and a specialized focus on digital threats, Leatherman is taking the helm at a time when the cyber landscape is more volatile and geopolitically charged than ever. His promotion from within signals the agency’s trust in continuity and expertise to navigate a future dominated by cyber warfare, ransomware attacks, and espionage campaigns orchestrated by hostile nation-states.
A Career Built on Cyber Frontlines
Leatherman’s rise to lead the FBI’s Cyber Division comes after 22 years of dedicated service, most recently as section chief and deputy assistant director. He has played a central role in tackling some of the highest-profile cyber incidents in recent history. He was instrumental in operations against LockBitSupp — the figure behind the notorious LockBit ransomware — and directed responses to the Colonial Pipeline attack in 2021. His work has extended to addressing massive infections like the LummaC2 malware, affecting millions of devices globally. Leatherman also led efforts to dismantle Chinese state-sponsored hacking networks like Salt Typhoon and Volt Typhoon, which have threatened U.S. critical infrastructure, including telecommunications.
His promotion, announced in a personal LinkedIn post, acknowledges the FBI’s mission at the intersection of national security, intelligence, and law enforcement. Leatherman emphasized that his vision is to make “malicious cyber activity unsustainable” by disrupting both criminal and state-backed adversaries, improving victim resilience through intelligence sharing, and maintaining relentless pressure on the cyber underworld. He replaces Bryan Vorndran, who stepped down earlier this year to join Microsoft as Deputy Chief Information Security Officer. The change comes during a broader shakeup across federal cybersecurity leadership, following high-profile departures under the previous administration, including that of Cynthia Kaiser, a key policy figure at FBI Cyber.
Leatherman’s appointment brings a sense of stability and renewed strategic direction to the FBI’s cyber operations, aligning with the bureau’s evolving priorities in a world where digital threats are becoming just as dangerous as physical ones.
What Undercode Say:
Continuity Over Disruption: A Strategic Move
Leatherman’s internal promotion reflects a deliberate move by the FBI to maintain operational stability amid an unstable cybersecurity climate. After years of leadership churn, particularly during the Trump administration, Leatherman’s deep institutional knowledge and active role in high-stakes cyber investigations provide a strong foundation for continuity. This decision avoids the learning curve that an outsider would face and sends a clear message: the FBI wants a steady hand in an increasingly turbulent digital world.
Experience Over Experimentation
By choosing someone already deeply embedded in cyber operations, the FBI ensures its new leader understands the internal mechanics of the agency, existing strategies, and inter-agency dynamics. Leatherman isn’t stepping in cold — he has already shaped many of the policies and responses that define the bureau’s cyber playbook. This level of operational familiarity will be critical as threats escalate in sophistication and scope.
Emphasis on National Security and State-Level Threats
Leatherman’s experience with Chinese state-sponsored attacks shows a pivot in FBI priorities — no longer just reactive to ransomware but actively engaged in state-level cyber espionage campaigns. His public leadership in tracking Volt Typhoon and Salt Typhoon reinforces the FBI’s dual mandate of cybercrime suppression and national defense. With China and Russia continually testing U.S. defenses, his background is a natural fit for this new hybrid threat environment.
Public-Facing Leadership and Transparency
One of Leatherman’s distinct traits is his openness with the public and press. His regular briefings and media engagement contrast with the often-secretive nature of cybersecurity operations. This transparency could help the FBI regain public trust and encourage greater collaboration with the private sector — particularly crucial as ransomware and data breaches increasingly target businesses, hospitals, and schools.
Bridging Federal and Private Cybersecurity Efforts
As Vorndran departs to Microsoft and Kaiser heads to Halcyon, there’s an evident trend of cyber professionals moving between federal and private sectors. Leatherman must now strengthen these public-private ties to ensure swift information sharing during major incidents. With attackers often exploiting commercial systems to reach government targets, the FBI’s ability to coordinate across sectors is more important than ever.
Shifting From Response to Prevention
Historically, federal agencies have been criticized for reactive strategies. Leatherman’s pledge to make cybercrime “unsustainable” hints at a more proactive doctrine — one that focuses on prevention, infiltration of cybercrime networks, and disruption before damage is done. This is especially important as artificial intelligence, deepfakes, and automated malware amplify the speed and scale of attacks.
Stabilizing After a Period of Transition
The loss of multiple high-ranking cyber officials could have destabilized the bureau. However, Leatherman’s promotion mitigates that risk, maintaining momentum and strategic vision. His leadership will likely prioritize rebuilding morale, reinforcing inter-agency cooperation, and addressing knowledge gaps left by recent exits.
Signals to Adversaries and Allies
Naming a veteran like Leatherman also serves as a geopolitical signal. It tells adversaries that the U.S. is reinforcing its cyber defenses with capable, battle-tested professionals. At the same time, it reassures allies that the FBI remains a dependable partner in international cybercrime efforts.
A Leader at the Intersection of Policy and Action
Unlike many in leadership who operate at the policy level, Leatherman brings operational grit. He has walked the front lines of digital warfare and understands both strategy and execution. That balance could help shape smarter, more agile policies — ones grounded in real-world realities.
Preparing for the Future
With cyberattacks growing in complexity and frequency, the FBI must evolve rapidly. Leatherman’s leadership will likely focus on modernizing tools, integrating AI in threat analysis, and upskilling agents in cyber forensics. As the threat landscape changes, so must the defenders — and Leatherman seems well-positioned to lead that evolution.
Fact Checker Results ✅
Brett Leatherman was officially appointed assistant director of the FBI Cyber Division ✅
He has led operations related to LockBit, Colonial Pipeline, and Chinese-sponsored attacks ✅
His promotion follows the departure of Bryan Vorndran and Cynthia Kaiser ✅
Prediction 🔮
Leatherman’s tenure is likely to steer the FBI Cyber Division toward greater transparency, collaboration, and preemptive cyber defense strategies. Expect more aggressive stances on ransomware actors, deeper alliances with tech firms, and a redefined mission that blends national security with cyber resilience. His appointment could mark the beginning of a golden age for proactive cyber law enforcement 🚨💻🛡️
References:
Reported By: cyberscoop.com
Extra Source Hub:
https://www.discord.com
Wikipedia
Undercode AI
Image Source:
Unsplash
Undercode AI DI v2
