US Treasury Breach

China Hacked US Treasury via Third-Party Software

In early December, a China-based Advanced Persistent Threat (APT) actor gained unauthorized access to US Treasury Department systems via a compromised third-party service provider, BeyondTrust. The breach involved several employee workstations and some unclassified documents, prompting the Treasury Department to characterize the incident as a “major cybersecurity incident.” Investigations, involving the FBI and other agencies, are underway to assess the full impact. The Treasury Department has stated that the access has been stopped and will provide a supplemental report within 30 days.

John Q. Hosedrinker Dec 30, 2024

News

China-Backed Hackers Breach US Treasury Systems

A major cybersecurity incident at the US Treasury Department involved a Chinese state-sponsored actor gaining access to several Treasury workstations and unclassified documents via a compromised third-party software provider, BeyondTrust. The intrusion, attributed to a stolen access key, allowed the actor to override security and access departmental user workstations. The compromised service has been taken offline, and investigations are underway with law enforcement and CISA. Treasury officials will brief congressional committees on the breach next week.

John Q. Hosedrinker Dec 30, 2024

US Treasury Breach

China Hacked US Treasury via Third-Party Software

China-Backed Hackers Breach US Treasury Systems

Stories You May Have Missed

Trump Threatens to Abolish FEMA, Sparking Outrage and Disaster Concerns

Amazon Closes Quebec Facilities: Union Busting or Business as Usual?

Mexican Border States Prepare for Migrant Influx Amidst Deportation Push

Milei Blames Musk’s Nazi Salute on ‘International Wokism’