US Treasury breached by state-sponsored Chinese hackers

12:01pm on 31 December 2024

The news: The US Treasury Department has told lawmakers it was breached by Chinese state-sponsored hackers in a “major” cybersecurity incident.

The context: External vendor BeyondTrust informed Treasury on December 8 of the breach. The hackers had managed to get an online key used to provide remote cloud-based technical support to Treasury staff.

A letter obtained by Politico, sent to Senate Banking Chair Sherrod Brown and ranking Republican Senator Tim Scott, noted that the hackers had managed to override security systems, remotely access Treasury workstations and access some unclassified documents.

What they said: "Once Treasury was alerted by the service provider, we immediately contacted Cybersecurity and Infrastructure Security Agency (CISA) and have worked with law enforcement partners across the government to ascertain the impact of this incident,” a Treasury spokesperson said.

“The compromised BeyondTrust service has been taken offline and there is no evidence indicating the threat actor has continued access to Treasury systems or information.”

The source: Politico

US Treasury breached by state-sponsored Chinese hackers

Sign up to Political Capital Sign up to Political Capital Signed up to Political Capital

Sign up to The Edition Sign up to The Edition Signed up to The Edition

Sign up to Standup Sign up to Standup Signed up to Standup