US Treasury computers hacked by Chinese 'threat actor' in 'major incident'
The U.S. Treasury Department experienced a cybersecurity breach linked to a Chinese state-sponsored group, accessing unclassified documents via a third-party service. Investigations are ongoing, with a report expected in 30 days.
Read original article
The U.S. Treasury Department reported a significant cybersecurity breach attributed to a state-sponsored Chinese hacking operation. The breach occurred through a compromised third-party cybersecurity service provider, BeyondTrust, which allowed the hackers to access the desktop computers of Treasury employees. In a letter to Senators Sherrod Brown and Tim Scott, Assistant Secretary Aditi Hardikar disclosed that the breach was detected on December 8, and unclassified documents were accessed. The hackers exploited a key used by BeyondTrust to secure a cloud-based service for remote technical support, enabling them to bypass security measures. The Treasury has since collaborated with the Cybersecurity and Infrastructure Security Agency, the FBI, and forensic investigators to assess the incident's impact. A Treasury spokesperson confirmed that the compromised service has been taken offline and stated there is no evidence of ongoing access to Treasury systems. The department emphasized its commitment to cybersecurity and plans to release a supplemental report within 30 days.
- The U.S. Treasury was hacked by a Chinese state-sponsored group via a third-party service.
- The breach involved access to unclassified documents through compromised software.
- The Treasury is working with federal agencies to investigate the incident.
- The compromised service has been deactivated, and no ongoing access is detected.
- A supplemental report on the breach will be released in 30 days.
Related
China Hacked Treasury Dept. In 'Major Incident,' U.S. Says
The U.S. Treasury Department experienced a cybersecurity breach by a state-sponsored Chinese actor, accessing workstations and documents. The Treasury is collaborating with the FBI to assess the situation.
China-backed hackers breached US Treasury workstations
The U.S. Treasury Department experienced a significant cybersecurity breach by a China-backed hacker group, leading to unauthorized access and collaboration with agencies to assess the damage and threats.
US treasury's workstations breached in cyber-attack by China – report
Chinese state-sponsored hackers breached the US Treasury Department via a third-party provider, accessing unclassified documents. The Treasury has secured its systems and engaged federal agencies to investigate the incident.
The US Treasury Department was hacked
The US Treasury Department suffered a security breach by a China-based hacker, accessing BeyondTrust software and employee workstations. The agency is collaborating with CISA and the FBI to enhance cyber defenses.
US Treasury says it was hacked by China in 'major incident'
A cybersecurity breach at the US Treasury Department, attributed to a Chinese state-sponsored hacker, involved unclassified documents. The incident is under investigation, with a report to lawmakers expected in 30 days.
2 commentsAlso (38 points, 3 hours ago, 6 comments) https://news.ycombinator.com/item?id=42553154
The letter: https://legacy.www.documentcloud.org/documents/25472740-lett...
Related
China Hacked Treasury Dept. In 'Major Incident,' U.S. Says
The U.S. Treasury Department experienced a cybersecurity breach by a state-sponsored Chinese actor, accessing workstations and documents. The Treasury is collaborating with the FBI to assess the situation.
China-backed hackers breached US Treasury workstations
The U.S. Treasury Department experienced a significant cybersecurity breach by a China-backed hacker group, leading to unauthorized access and collaboration with agencies to assess the damage and threats.
US treasury's workstations breached in cyber-attack by China – report
Chinese state-sponsored hackers breached the US Treasury Department via a third-party provider, accessing unclassified documents. The Treasury has secured its systems and engaged federal agencies to investigate the incident.
The US Treasury Department was hacked
The US Treasury Department suffered a security breach by a China-based hacker, accessing BeyondTrust software and employee workstations. The agency is collaborating with CISA and the FBI to enhance cyber defenses.
US Treasury says it was hacked by China in 'major incident'
A cybersecurity breach at the US Treasury Department, attributed to a Chinese state-sponsored hacker, involved unclassified documents. The incident is under investigation, with a report to lawmakers expected in 30 days.