What the Agricultural Industry Should Know About the Farm and Food Cybersecurity Act

Source: Article from Zac Amos, ReHack
05/07/25, 05:25 AM | Precision Farming, Supply Chain | Food Supply Chain, government policy, traceability

Technology has infiltrated the agricultural sector, with farmers relying on critical insights to optimize production, increase yields and streamline processes. Unfortunately, its adoption risks exposure of sensitive information and compromised national security.

The Farm and Food Cybersecurity Act is a bipartisan solution to enhance the protection of agricultural information and promote robust cybersecurity measures. Its goal is to build a resilient food system capable of withstanding evolving farm and food industry cyber threats.

 

The State of National Food Cybersecurity

A 2024 report found that the farm and food sector accounted for 5.5% of all 2,905 ransomware attacks in 2023 and 8.2% in the second quarter of 2024, making it one of the most targeted critical industries in the United States.

Many technologies farmers use today — automated feeding systems, robotics, temperature-control sensors and systems powered by artificial intelligence (AI) — underwent development years before cybersecurity threats were the issue they are today. This has left the industry and supply chain susceptible to hackers.

Companies that sell food are especially vulnerable, as they are more willing to pay a ransom to avoid widespread food spoilage. Likewise, attacks on agricultural technologies may disrupt planting and harvesting. Reports indicated 40 incidents in food and agriculture in Q1 of 2024 alone, including a situation in Switzerland where a ransomware attack deactivated a milking robot, leading to substantial financial losses and the death of a pregnant cow.

Cybercrime will only become more prevalent. Experts even estimated 18.8 billion connected devices would go online by the end of 2024. The rise of AI has also further propelled interconnected systems, opening the doorway to security risks.

 

What Is the Farm and Food Cybersecurity Act?

The Farm and Food Cybersecurity Act aims to protect the agricultural sector from rising cybersecurity risks. The bill proposes to do the following:

  • Deliver assessments every two years and report on potential threats and vulnerabilities in critical food infrastructure
  • Conduct annual cross-sector crisis simulation exercises related to food security emergencies and disruptions
  • Provide feedback to farmers regarding findings and recommendations from each simulation exercise
  • Authorize $1 million annually from 2024 to 2028 for simulation exercises

Overall, the act will help identify and analyze cybersecurity threats within agriculture and support farmers in responding to emergencies. The legislation will also foster coordination and information sharing among stakeholders and implement best practices for enhancing security throughout the supply chain.

 

Current Status of the Legislation

The Farm and Food Cybersecurity Act was introduced in January 2024 by U.S. Representatives Brad Finstad and Elissa Slotkin from Minnesota and assigned to the Committee on Agriculture, Nutrition and Forestry for review. Republican Senator Tom Cotton from Arkansas was the bill’s sponsor, along with nine other cosponsors from the Democratic and Republican parties.

Once a bill gets introduced, the committee reviews it and makes changes before sending it to the chamber for a vote. If it passes the first body of Congress, it’ll undergo another round of discussions, modifications and votes. With unanimous agreement, the president can sign it into law or veto it.

While protecting the nation’s agricultural sector may seem like an easy decision, several factors can hold it up, including:

  • A lack of understanding or awareness of a new and rapidly evolving agricultural issue
  • Cost constraints in implementing cybersecurity in farm and food businesses, causing lawmakers to hesitate to impose financial burdens on struggling farms
  • Political polarization from opposing lawmakers
  • Lobbyist opposition from powerful entities who believe the act will cause overbearing restrictions on business

Despite potential pushback from some groups, the bill is widely supported by the American Farm Bureau Federation, the American Sugar Alliance, and the National Grain and Feed Association, among others.

 

Why Is a Cybersecurity Act Important for the Farm and Food Sector?

The Farm and Food Cybersecurity Act will have several impacts on agricultural workers and the industry, benefiting all aspects of the supply chain.

1.Promote Private-Public Coordination

The act will promote greater transparency between farmers and the government. Federal training programs can encourage farmers’ awareness of cybersecurity threats — 80% of chief information security officers say negligent employees will be the greatest security risk over the next two years. Programs can also conduct vulnerability assessments, aid incident response planning, and help farmers secure the appropriate equipment, hardware and technology.

2.Ensure Food Safety and Security

Food security is a growing concern in the U.S., with 18 million households being food insecure in 2023 — an increase from 17 million in 2022. Another 11.2 million and 6.8 million households had low or very low food security, respectively.

Protection from cyber attacks can prevent disruptions to farm operations, processing and distribution that would otherwise cause food shortages, price hikes and severe health consequences.

3.Support Economic Growth

The food and agricultural sector represents 5.6% of the U.S. gross domestic product and 10.4% of the nation’s employment. It comprises approximately 1.9 million farms, 220,000 registered food manufacturers, processors and storage facilities, and over 700,000 restaurants. The Farm and Food Cybersecurity Act would protect this essential industry from disruptive threats.

4.Protect Sensitive Data

Data-driven technologies in agriculture collect information about crop yields, food safety and locations. Among the highest risks of cybercrime are the exposure of trade secrets, compromised regulatory compliance and prohibited remote operability. Without stopping breaches, hackers might negatively impact public health, cause financial hardships and erode consumer trust.

5.Protect Critical Infrastructure

Food and agriculture technology is a critical infrastructure, and boosting its resilience is crucial. The proposed Act will further safeguard vulnerable equipment and enhance national security and economic stability.

 

Improving Cybersecurity for a Robust Agricultural Sector

Protecting the U.S. food system from cyber threats is essential. The Farm and Food Cybersecurity Act presents a viable defense against digital intrusions. Technological advancements are unlikely to slow down, with farmers adopting new tools rapidly. As such, this legislation could be a game changer in protecting a crucial sector and national security.

 

More Supply Chain Stories | Articles | News

Comments (0)

This post does not have any comments. Be the first to leave a comment below.

Post A Comment

You must be logged in before you can post a comment. Login now.

Featured Product

Transforming Agriculture with Next-Generation LED Horticulture Lighting

Transforming Agriculture with Next-Generation LED Horticulture Lighting

As the agricultural industry embraces innovation, LED lighting is playing a pivotal role in the growth of controlled-environment agriculture (CEA). By improving crop yields, enabling year-round production and supporting sustainable practices, advanced LED solutions are helping redefine what's possible in modern farming. Read the article to learn how high-performance LED technology is helping growers meet tomorrow's challenges today.
More Products
Feature Your Product