Trump Signs Defense Bill Prohibiting China-Based Engineers in Pentagon IT Work

Top Stories

Home>
Media & Technology>

        Trump Signs Defense Bill Prohibiting China-Based Engineers in Pentagon IT Work
    The measure, which emerged in response to a ProPublica investigation, bars Microsoft engineers in China and other adversarial countries from servicing sensitive Pentagon cloud computing systems.
News
President Donald Trump with Secretary of State Marco Rubio, left, and Secretary of Defense Pete Hegseth

        Tasos Katopodis/Getty Images
    
By Renee Dudley, Propublica, 
Renee Dudley, Propublica
 See More Writings by author 
Doris Burke, Propublica
Doris Burke, Propublica
 See More Writings by author 
Jan 14, 2026
President Donald Trump signed into law this month a measure that prohibits anyone based in China and other adversarial countries from accessing the Pentagon’s cloud computing systems.
The ban, which is tucked inside the $900 billion defense policy law, was enacted in response to a ProPublica investigation this year that exposed how Microsoft used China-based engineers to service the Defense Department’s computer systems for nearly a decade — a practice that left some of the country’s most sensitive data vulnerable to hacking from its leading cyber adversary.
U.S.-based supervisors, known as “digital escorts,” were supposed to serve as a check on these foreign employees, but we found they often lacked the expertise needed to effectively supervise engineers with far more advanced technical skills.
In the wake of the reporting, leading members of Congress called on the Defense Department to strengthen its security requirements while blasting Microsoft for what some Republicans called “a national betrayal.” Cybersecurity and intelligence experts have told ProPublica that the arrangement posed major risks to national security, given that laws in China grant the country’s officials broad authority to collect data.
Microsoft pledged in July to stop using China-based engineers to service Pentagon cloud systems after Defense Secretary Pete Hegseth publicly condemned the practice. “Foreign engineers — from any country, including of course China — should NEVER be allowed to maintain or access DoD systems,” Hegseth wrote on X.
In September, the Pentagon updated its cybersecurity requirements for tech contractors, banning IT vendors from using China-based personnel to work on Defense Department computer systems. The new law effectively codifies that change, requiring Hegseth to prohibit individuals from China, Russia, Iran and North Korea from having direct or indirect access to Defense Department cloud computing systems.
Microsoft declined to comment on the new law. Following the earlier changes, a spokesperson said the company would “work with our national security partners to evaluate and adjust our security protocols in light of the new directives.”
Rep. Elise Stefanik, a Republican who serves on the House Armed Service Committee, celebrated the development, saying it “closes contractor loopholes … following the discovery that companies like Microsoft exploited” them. Sen. Tom Cotton, the GOP chair of the Senate Select Committee on Intelligence who has been critical of the tech giant, also heralded the legislation, saying it “includes much-needed efforts to protect our nation’s critical infrastructure, which is threatened by Communist China and other foreign adversaries.”
The legislation also bolsters congressional oversight of the Pentagon’s cybersecurity practices, mandating that the secretary brief the congressional defense committees on the changes no later than June 1, 2026. After that, such briefings will take place annually for the next three years, including updates on the “effectiveness of controls, security incidents, and recommendations for legislative or administrative action.”
As ProPublica reported, Microsoft initially developed the digital escort program as a work-around to a Defense Department requirement that people handling sensitive data be U.S. citizens or permanent residents.
The company has maintained that it disclosed the program to the Pentagon and that escorts were provided “specific training on protecting sensitive data” and preventing harm. But top Pentagon officials have said they were unaware of Microsoft’s program until ProPublica’s reporting.
A copy of the security plan that the company submitted to the Defense Department in 2025 showed Microsoft left out key details of the escort program, making no reference to its China-based operations or foreign engineers at all.
This summer, Hegseth announced that the department had opened an investigation into whether any of Microsoft’s China-based engineers had compromised national security. He also ordered a new third-party audit of the company’s digital-escort program. The Pentagon did not respond to a request for comment on the status of those inquiries.

Trump Signs Defense Bill Prohibiting China-Based Engineers in Pentagon IT Work was originally published by ProPublica and is republished with permission.

Join a growing community committed to civic renewal.
Subscribe to The Fulcrum and be part of the conversation.

        Confirm that you are not a bot.
      

        ×
      
Latest news
Environment
        East Wing's Demolition Highlights U.S. Construction Waste Problem
    
Mohamed Ismail
13h
Civic Engagement & Education
        Campus Civic Engagement: Democracy Innovation Prizes
    
John Barth
13h
Ethics & Leadership
        “Pulling Donald Trump’s Teeth”
    
Daniel Monti
13h
Elections
        Trump & Hegseth gave Mark Kelly a huge 2028 gift
    
S.E. Cupp
13h

The Top 5

Illinois 2nd District Candidates Meet Up in High-Energy Town Hall

Discover More

President Donald Trump signed into law this month a measure that prohibits anyone based in China and other adversarial countries from accessing the Pentagon’s cloud computing systems.

The ban, which is tucked inside the $900 billion defense policy law, was enacted in response to a ProPublica investigation this year that exposed how Microsoft used China-based engineers to service the Defense Department’s computer systems for nearly a decade — a practice that left some of the country’s most sensitive data vulnerable to hacking from its leading cyber adversary.

U.S.-based supervisors, known as “digital escorts,” were supposed to serve as a check on these foreign employees, but we found they often lacked the expertise needed to effectively supervise engineers with far more advanced technical skills.

In the wake of the reporting, leading members of Congress called on the Defense Department to strengthen its security requirements while blasting Microsoft for what some Republicans called “a national betrayal.” Cybersecurity and intelligence experts have told ProPublica that the arrangement posed major risks to national security, given that laws in China grant the country’s officials broad authority to collect data.

Microsoft pledged in July to stop using China-based engineers to service Pentagon cloud systems after Defense Secretary Pete Hegseth publicly condemned the practice. “Foreign engineers — from any country, including of course China — should NEVER be allowed to maintain or access DoD systems,” Hegseth wrote on X.

In September, the Pentagon updated its cybersecurity requirements for tech contractors, banning IT vendors from using China-based personnel to work on Defense Department computer systems. The new law effectively codifies that change, requiring Hegseth to prohibit individuals from China, Russia, Iran and North Korea from having direct or indirect access to Defense Department cloud computing systems.

Microsoft declined to comment on the new law. Following the earlier changes, a spokesperson said the company would “work with our national security partners to evaluate and adjust our security protocols in light of the new directives.”

Rep. Elise Stefanik, a Republican who serves on the House Armed Service Committee, celebrated the development, saying it “closes contractor loopholes … following the discovery that companies like Microsoft exploited” them. Sen. Tom Cotton, the GOP chair of the Senate Select Committee on Intelligence who has been critical of the tech giant, also heralded the legislation, saying it “includes much-needed efforts to protect our nation’s critical infrastructure, which is threatened by Communist China and other foreign adversaries.”

The legislation also bolsters congressional oversight of the Pentagon’s cybersecurity practices, mandating that the secretary brief the congressional defense committees on the changes no later than June 1, 2026. After that, such briefings will take place annually for the next three years, including updates on the “effectiveness of controls, security incidents, and recommendations for legislative or administrative action.”

As ProPublica reported, Microsoft initially developed the digital escort program as a work-around to a Defense Department requirement that people handling sensitive data be U.S. citizens or permanent residents.

The company has maintained that it disclosed the program to the Pentagon and that escorts were provided “specific training on protecting sensitive data” and preventing harm. But top Pentagon officials have said they were unaware of Microsoft’s program until ProPublica’s reporting.

A copy of the security plan that the company submitted to the Defense Department in 2025 showed Microsoft left out key details of the escort program, making no reference to its China-based operations or foreign engineers at all.

This summer, Hegseth announced that the department had opened an investigation into whether any of Microsoft’s China-based engineers had compromised national security. He also ordered a new third-party audit of the company’s digital-escort program. The Pentagon did not respond to a request for comment on the status of those inquiries.

Trump Signs Defense Bill Prohibiting China-Based Engineers in Pentagon IT Work was originally published by ProPublica and is republished with permission.

From Your Site Articles

Slovakia’s election deep fakes show how AI could be a danger to U.S. elections ›

Related Articles Around the Web

Read More
General view of Galileo Ferraris Ex Nuclear Power Plant on February 3, 2024 in Trino Vercellese, Italy. The former "Galileo Ferraris" thermoelectric power plant was built between 1991 and 1997 and opened in 1998. 

        Getty Images, Stefano Guidi
    

        Powering the Future: Comparing U.S. Nuclear Energy Growth to French and Chinese Nuclear Successes
    
Maya Ducker
Feb 24, 2026
With the rise of artificial intelligence and a rapidly growing need for data centers, the U.S. is looking to exponentially increase its domestic energy production. One potential route is through nuclear energy—a form of clean energy that comes from splitting atoms (fission) or joining them together (fusion). Nuclear energy generates energy around the clock, making it one of the most reliable forms of clean energy. However, the U.S. has seen a decrease in nuclear energy production over the past 60 years; despite receiving 64 percent of Americans’ support in 2024, the development of nuclear energy projects has become increasingly expensive and time-consuming. Conversely, nuclear energy has achieved significant success in countries like France and China, who have heavily invested in the technology. 
In the U.S., nuclear plants represent less than one percent of power stations. Despite only having 94 of them, American nuclear power plants produce nearly 20 percent of all the country’s electricity. Nuclear reactors generate enough electricity to power over 70 million homes a year, which is equivalent to about 18 percent of the electricity grid. Furthermore, its ability to withstand extreme weather conditions is vital to its longevity in the face of rising climate change-related weather events. However, certain concerns remain regarding the history of nuclear accidents, the multi-billion dollar cost of nuclear power plants, and how long they take to build. 
Keep ReadingShow less
Recommended
Glossary
        Redistricting
    
The Fulcrum
01 January 2025
Democracy
        Balance – The Golden Mean
    
Amy Lockard
19 May 2025
Business & Democracy
        Just the Facts: Canadian Tariffs
    
David L. Nevins
09 March 2025
Education
        The Fulcrum Opens Applications for 2026 Summer Journalism Fellowship
    
The Fulcrum
03 January
Rule of Law
        The Legal Costs and Risks of Trump’s 328 Lawsuits
    
Steve Corbin
21 May 2025
Health
        Why ICE's Aggressive Tactics are a Public Health Crisis
    
Lance Keene
19 February

        As AI reshapes jobs and politics, America faces a choice: resist automation or embrace innovation. The path to prosperity lies in AI literacy and adaptability.
    

        Getty Images, Douglas Rissing
    

        Why Should I Be Worried About AI?
    
Jeff  Dauphin
Feb 17, 2026
For many people, the current anxiety about artificial intelligence feels overblown. They say, “We’ve been here before.” Every generation has its technological scare story. In the early days of automation, factories threatened jobs. Television was supposed to rot our brains. The internet was going to end serious thinking. Kurt Vonnegut’s Player Piano, published in 1952, imagined a world run by machines and technocrats, leaving ordinary humans purposeless and sidelined. We survived all of that.
So when people today warn that AI is different — that it poses risks to democracy, work, truth, our ability to make informed and independent choices — it’s reasonable to ask: Why should I care?
Keep ReadingShow less
AI-generated “nudification” is no longer a distant threat—it’s harming students now. As deepfake pornography spreads in schools nationwide, educators are left to confront a growing crisis that outpaces laws, platforms, and parental awareness.

        Getty Images, d3sign
    

        How AI Deepfakes in Classrooms Expose a Crisis of Accountability and Civic Trust
    
Julienne  Louis-Anderson
Feb 16, 2026
While public outrage flares when AI tools like Elon Musk’s Grok generate sexualized images of adults on X—often without consent—schools have been dealing with this harm for years. For school-aged children, AI-generated “nudification” is not a future threat or an abstract tech concern; it is already shaping their daily lives.
Last month, that reality became impossible to ignore in Lafourche Parish, Louisiana. A father sued the school district after several middle school boys circulated AI-generated pornographic images of eight female classmates, including his 13-year-old daughter. When the girl confronted one of the boys and punched him on a school bus, she was expelled. The boy who helped create and spread the images faced no formal consequences.
Keep ReadingShow less

        a remote control sitting in front of a television
    

        Photo by Pinho . on Unsplash

        Democracies Don’t Collapse in Silence; They Collapse When Truth Is Distorted or Denied
    
Carolyn  Goode
Feb 16, 2026
Even with the full protection of the First Amendment, the free press in America is at risk. When a president works tirelessly to silence journalists, the question becomes unavoidable: What truth is he trying to keep the country from seeing? What is he covering up or trying to hide?
Democracies rarely fall in a single moment; they erode through a thousand small silences that go unchallenged. When citizens can no longer see or hear the truth — or when leaders manipulate what the public is allowed to know — the foundation of self‑government begins to crack long before the structure falls. When truth becomes negotiable, democracy becomes vulnerable — not because citizens stop caring, but because they stop receiving the information they need to act.
Keep ReadingShow less
Load More

Latest Stories

Join a growing community committed to civic renewal.

Trump Signs Defense Bill Prohibiting China-Based Engineers in Pentagon IT Work

The measure, which emerged in response to a ProPublica investigation, bars Microsoft engineers in China and other adversarial countries from servicing sensitive Pentagon cloud computing systems.News

Join a growing community committed to civic renewal.

Latest news

Read More

Recommended

This Isn’t About Robots — It’s About Judgment

What Do We Mean by “Judgment”?

Why AI Feels So Convincing

Conversation Changes Everything

How Judgment Gradually Shifts

Why Scale Makes This a Public Issue

The Global Dimension We’re Ignoring

Why Markets Alone Aren’t Enough

So, Why Should You Care?

The measure, which emerged in response to a ProPublica investigation, bars Microsoft engineers in China and other adversarial countries from servicing sensitive Pentagon cloud computing systems.
News