Insights

Washington, D.C. – March 4, 2026: Crowell & Moring has expanded its Privacy and Cybersecurity Group with the addition of Rajeev Raghavan, a former Special Counsel to the Director of the Federal Bureau of Investigation and federal prosecutor. With more than 15 years of direct experience handling cybercrime, technology, regulatory, and enforcement challenges, and a foundational background as a computer programmer, Raghavan further strengthens the firm’s ability to help clients respond to evolving cybersecurity threats and navigate a rapidly changing legal and regulatory environment.

On May 5, 2026, CISA announced CI Fortify — an initiative directing critical infrastructure owners and operators to prepare for geopolitical conflict in which OT networks are actively targeted while communications infrastructure is simultaneously degraded.

The recent $285 million theft from Drift Protocol serves as a high-stakes reminder that the human element remains one of the biggest cybersecurity gaps in any organization. This was not a “hack” in the traditional sense of breaking through a digital wallet. North Korean actors used sophisticated social engineering to exploit human trust ―  highlighting what looks like a “hacking” risk into valuable lessons learned for cybersecurity oversight.

On April 7, 2026, six federal agencies (FBI, CISA, NSA, EPA, DOE, and U.S. Cyber Command – Cyber National Mission Force) published a joint advisory warning that Iranian-affiliated threat actors are targeting internet-facing OT devices, particularly PLCs.  In some cases, the threat actors have caused operational disruptions and financial losses at U.S. critical infrastructure organizations by manipulating software files that contain configuration settings as well as showing false data on hardware and software dashboards and displays.