CISA says ‘no indication’ other US government agencies affected in Treasury hack

Posted by:
Emma Walker
Thu, 09 Jan
0 Comment
Feature image

In late 2024, the US Treasury Department became the target of a cyberattack which has been linked to a Chinese threat actor, according to the Cybersecurity and Infrastructure Security Agency (CISA). The agency stated that no other federal government departments were affected by the breach. The attack, considered a major incident, exposed vulnerabilities in key systems, resulting in stolen documents and breached systems. The hackers exploited a third-party security provider, BeyondTrust, to gain remote access to Treasury Department systems. Despite BeyondTrust serving other agencies like CISA, NSA, and NIST, the Treasury Department was the only one compromised.

The breach was detected quickly, with suspicious activity observed on December 2 and reported to the Treasury on December 8. The Treasury is expected to provide more details about the stolen files within 30 days. China has denied any involvement in the breach, stating its opposition to hacking and disinformation aimed at politically targeting the country. CISA is collaborating closely with the Treasury and BeyondTrust to manage the cybersecurity incident, ensuring a comprehensive response while continuing to monitor the situation for any impacts on other federal agencies.

Tags:

0 0 votes
Article Rating
Subscribe
Notify of
guest

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments