News and Events 
Aflac, one of the largest American insurance companies, reported that cybercriminals breached its systems on June 20, 2025. Suspicious activity first occurred on Aflac’s U.S. network
3 min read
Published on February 12, 2025
On January 16, 2025, an Executive Order 14144 was issued, aimed at strengthening the nation’s cybersecurity defenses. This order comes at a crucial time – during the fiscal year 2023, U.S. federal agencies reported over 32,000 cybersecurity incidents, reflecting a 5% increase from the previous year. Placing a strong emphasis on zero-trust architecture, secure software development, encryption, Multi-Factor Authentication (MFA) and identity management, the order aims to fortify defenses against evolving cyber threats targeting federal systems, private supply chains and critical infrastructure.
For federal agencies, this executive order serves as a roadmap for enhancing their cybersecurity posture. It’s not just about meeting regulatory standards but about creating a resilient, adaptive defensive framework. As these agencies move to implement these directives, solutions that offer security, compliance and scalability will be critical.
Key pillars of the executive order and how to approach them
1. Zero-trust architecture
Adopting a zero-trust framework is essential for meeting the order’s security mandates. A recent survey shows that while 41% of organizations have implemented zero-trust architecture, 59% have yet to adopt these measures. Moreover, organizations leveraging zero-trust frameworks have been shown to reduce the average cost of a data breach by nearly $1 million.
Keeper Security’s Role-Based Access Controls (RBAC) and least-privilege principles embody the zero-trust philosophy, offering granular, adaptive security measures that minimize attack surfaces and protect federal systems.
2. Enhanced identity protection
Federal systems are under constant attack, with phishing schemes and identity-based exploits accounting for a significant portion of breaches. The executive order underscores the importance of phishing-resistant authentication, such as biometrics and hardware security keys, to prevent unauthorized access.
Keeper’s advanced identity protection features, including biometric authentication and multi-factor authentication, directly support these goals. With phishing remaining a top attack vector, tools that prioritize secure, streamlined authentication are critical for reducing exposure to identity-related threats.
3. Secure communications
The executive order also emphasizes the importance of encryption for protecting data in transit and at rest. Given the increasing frequency of ransomware attacks and data breaches, encrypted communications and secure storage have become essential.
Keeper’s encrypted vault technology ensures sensitive federal data remains confidential, while its secure sharing capabilities allow agencies to collaborate without exposing information to external risks. These features directly align with the order’s directives for protecting communications.
4. Supply chain security
The interconnected nature of federal systems makes supply chain security a critical focus. The order highlights the need for robust vendor and contractor management to mitigate third-party risks.
Keeper’s platform enhances supply chain security by providing controlled access to sensitive data and ensuring encrypted communication across external partnerships. By strengthening visibility and control, agencies can reduce vulnerabilities associated with their supply chains.
A unified approach to cybersecurity mandates
The executive order represents a pivotal movement in federal cybersecurity, emphasizing zero-trust principles, enhanced identity protection, secure communications and supply chain security. These initiatives provide a robust framework for tackling evolving cyber threats.
Keeper’s FedRAMP Authorized platform directly supports this vision by delivering solutions that combine robust encryption, phishing-resistant authentication and seamless collaboration tools. By aligning with these mandates, federal agencies can strengthen their cybersecurity posture and improve their resilience against modern challenges.
Why FedRAMP Authorization matters
FedRAMP sets the standard for cloud security in federal agencies, ensuring that cloud solutions meet stringent compliance and protection standards. Keeper’s FedRAMP Authorization underscores its commitment to providing federal organizations with advanced cybersecurity capabilities.
Key features of Keeper’s platform include:
- AWS GovCloud Hosting: Secure hosting in AWS GovCloud ensures compliance with federal security requirements for sensitive data and workloads.
- Identity Integration: Compatibility with Entra ID, Okta, Duo and Ping enables streamlined provisioning and efficient access management via SAML 2.0.
- BreachWatch™ for Dark Web Monitoring: Continuous monitoring of the dark web for exposed credentials protects against account compromises.
- Secure Collaboration: Agencies can securely share records and manage access to sensitive credentials without compromising control.
- Compliance and Security: Keeper supports FIPS 140-3 and FedRAMP standards, with detailed reporting for visibility into privileged access and credential use.
Future-proofing federal cybersecurity
As federal agencies embrace the executive order’s directives, platforms like KeeperPAM® provide the critical tools needed to achieve compliance and build a stronger, more secure foundation. From protecting sensitive communications to enabling zero-trust principles, Keeper’s solutions allow agencies to adapt to emerging challenges while protecting against modern cyber risks.
Learn more about Keeper’s solutions at www.keepersecurity.com to ensure your organization stays ahead of evolving cybersecurity challenges.
