Hello. The Cybersecurity and Infrastructure Security Agency would have its funding slashed by $495 million to a $2.38 billion allocation in President Trump’s proposed budget for fiscal 2026.

The falloff marks a stark reversal for CISA, which saw funding either climb or stay relatively flat over the past five years, from $2 billion in 2020 to almost $3 billion last year.

Read our full story. 

More news below.

• Texas Governor Greg Abbott is expected to sign the legislation, which would go into effect Jan. 1, 2026. 
• The move comes as the Trump administration's One Big Beautiful Bill moving through Congress includes a 10-year moratorium on state and local AI laws. 

Spyware maker NSO Group asks judge to reduce $167 million award for Meta. In May, a federal jury in San Jose, Calif., said NSO must pay damages in that amount after finding the company unlawfully compromised Meta's WhatsApp messaging service to install spyware on certain users' devices.

• NSO in a court filing called the award "outrageous," adding "it reflects the improper desire to bankrupt NSO out of general hostility toward its business activities." (TechCrunch)

Zero Networks raised $55 million in a Series C funding round led by Highland Europe. This brings the Tel Aviv-based startup's total funding to more than $100 million. Zero Networks makes software for microsegmenting networks to stop hackers from easily moving across systems they breach. 

CISO Move: Laura Deaner joined financial infrastructure provider Depository Trust & Clearing Corp. as CISO. Deaner succeeds Yonesy Núñez, who has moved to the role of chief cybersecurity risk officer. 

• Most recently, Deaner served for more than four years as CISO at insurer Northwestern Mutual. At DTCC, she reports to CIO Lynn Bishop. 

Tech company MathWorks said applications and other services are down after a ransomware attack. The incident started May 18, according to MathWorks, which provides engineering and modeling systems to scientists worldwide. Internal tech systems are also disrupted. 

Fancy cozy typhoon storm bear: CrowdStrike, Google, Microsoft and Palo Alto Networks are creating an online database to reconcile the many monikers for the same nation-state hacker groups. These and other cyber companies use their own often puzzling naming conventions. The competing efforts result in one hacker group having multiple names. What CrowdStrike calls Operator Panda, Microsoft calls Salt Typhoon, for example. (Reuters)

The WSJ Pro Cybersecurity team is Deputy Bureau Chief Kim S. Nash and reporters Angus Loten, James Rundle and Catherine Stupp. Follow us on X @WSJCyber. Reach the team by replying to any newsletter you receive or by emailing Kim at kim.nash@wsj.com.