Chinese Cyber Attack Hits US Treasury: A Deep Dive Into The Breach

By -

The US Treasury Department has alerted lawmakers about a significant cybersecurity breach, described by officials as a "major incident." According to a letter reviewed by CNN, the breach was orchestrated by a Chinese state-sponsored Advanced Persistent Threat (APT) actor, targeting Treasury workstations and unclassified documents.

How the Breach Was Discovered

The intrusion was first identified on December 8 when a third-party software provider, BeyondTrust, informed the Treasury Department that hackers had exploited a stolen key to gain remote access. "Based on available indicators, the incident has been attributed to a Chinese state-sponsored Advanced Persistent Threat actor," wrote Aditi Hardikar, Assistant Secretary for Management at the Treasury.

Immediate Response

A Treasury spokesperson confirmed the compromised service was promptly taken offline. Efforts are underway in collaboration with law enforcement and the Cybersecurity and Infrastructure Security Agency (CISA) to mitigate risks. Officials stated there is no evidence suggesting the hackers still have access to Treasury systems or data.

Details of the Attack

The hackers accessed a key used by BeyondTrust to secure its cloud-based service for technical support. This allowed them to bypass security protocols and infiltrate several Treasury workstations, accessing certain unclassified documents.

BeyondTrust reported the breach occurred on December 2, and by December 5, they confirmed unusual activity in their Remote Support product. The company swiftly suspended the affected systems, quarantined compromised instances, and engaged an external cybersecurity team for investigation. BeyondTrust emphasized that no other products were impacted and has been actively cooperating with law enforcement.

Next Steps and Ongoing Investigation

Treasury officials plan to brief House Financial Services Committee staff in a classified session next week, though an exact date is yet to be scheduled.

In the meantime, the Treasury Department is collaborating with the FBI, CISA, US intelligence agencies, and third-party forensic experts to fully assess the breach's scope and impact. "CISA was engaged immediately upon Treasury’s knowledge of the attack," Hardikar wrote, emphasizing the multi-agency effort to address the incident.

Major Cybersecurity Incident

According to Treasury protocols, incidents involving advanced persistent threat actors are classified as major cybersecurity breaches. A 30-day supplemental report is required to update on the situation.

While the full extent of the damage remains unclear, this breach underscores the ongoing risks posed by sophisticated cyberattacks and the importance of robust cybersecurity measures to protect sensitive government systems.

Comments

Post a Comment

Popular posts from this blog

Israel Moves To Shut Down Al Jazeera After A New Law Permits The Banning Of International Media Deemed A security Threat

By -
Image
    Israel’s Prime Minister Benjamin Netanyahu has vowed to shut down news network Al Jazeera following the passage Monday of a  sweeping law  allowing the government to ban foreign networks perceived as posing a threat to national security. Netanyahu said he intended “to act immediately in accordance with the new law” to stop the Qatari-based news outlet’s activity in the country, according to a post on social media platform X following the passage of the law. Al Jazeera Media Network, which has produced dogged, on the ground reporting of Israel’s war against Hamas in Gaza,  slammed the decision  in a statement, vowing it would not stop the network from continuing its “bold and professional coverage.” The new law gives the prime minister and communications minister authority to order the temporary closure of foreign networks operating in Israel – powers that rights groups say could have far-reaching implications on international media coverage of...
Read more

Tragic Toll: 87 Lives Lost in Northern Gaza Strike Amid UN Warning of Inescapable Danger

By -
Image
  Gaza's Hamas-run health ministry has said at least 87 people were killed and more than 40 injured in Saturday's Israeli air strike on the city of Beit Lahia in the north of the Palestinian enclave. The ministry said a number of people were still under the rubble after a residential area was hit. Israel said it was checking reports of casualties but added that earlier - lower - figures published by Hamas were "exaggerated". In recent weeks, the Israel military has been carrying out intense bombardment of northern Gaza, saying it wanted to prevent Hamas fighters from regrouping there. A senior UN official warned that the "nightmare in Gaza is intensifying" and the war "must stop now". The UN's peace process co-ordinator, Tor Wennesland, said that "nowhere is safe in Gaza". In a statement, Tor Wennesland said he condemned the continuing attacks on civilians. "This war must end, the hostages held by Hamas must be freed, the displac...
Read more

Mysteries In The Skies: US Air Force F-16 Crashes Off South Korean Coast

By -
Image
In a dramatic turn of events, a United States Air Force F-16 fighter jet plunged into the waters off the coast of South Korea during a routine training mission, adding another layer of intrigue to the series of crashes involving US military aircraft stationed in Korea. The incident unfolded on a Wednesday morning around 8:41 a.m. local time, as the F-16 from the 8th Fighter Wing encountered an in-flight emergency over the waters west of the Korean Peninsula. Kunsan Air Base, situated approximately 110 miles (180 kilometers) south of Seoul, promptly issued a statement confirming the crash. Thankfully, the pilot, belonging to the 8th Fighter Wing, executed a successful ejection and was recovered approximately 50 minutes after the aircraft went down. The Air Force reported that the pilot was conscious and underwent a thorough assessment at a medical facility. Expressing gratitude, Colonel Matthew Gaetke, the commander of the 8th Fighter Wing, acknowledged the rapid response of the Republi...
Read more